Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-10713 (GCVE-0-2020-10713)
Vulnerability from cvelistv5
Published
2020-07-30 12:58
Modified
2024-08-04 11:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- Out-of-bounds Write leading to Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Summary
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:14:14.235Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-4735",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"name": "[oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"name": "VU#174059",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"name": "USN-4432-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"name": "20200804 GRUB2 Arbitrary Code Execution Vulnerability",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"name": "openSUSE-SU-2020:1169",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"name": "openSUSE-SU-2020:1168",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://kb.vmware.com/s/article/80181"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"name": "GLSA-202104-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202104-05"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Grub",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All grub2 versions before 2.06"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Out-of-bounds Write leading to Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-05-01T01:08:06",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "DSA-4735",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"name": "[oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"name": "VU#174059",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"name": "USN-4432-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"name": "20200804 GRUB2 Arbitrary Code Execution Vulnerability",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"name": "openSUSE-SU-2020:1169",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"name": "openSUSE-SU-2020:1168",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://kb.vmware.com/s/article/80181"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"name": "GLSA-202104-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202104-05"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-10713",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Grub",
"version": {
"version_data": [
{
"version_value": "All grub2 versions before 2.06"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Out-of-bounds Write leading to Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4735",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"name": "[oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"name": "VU#174059",
"refsource": "CERT-VN",
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"name": "https://security.netapp.com/advisory/ntap-20200731-0008/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"name": "USN-4432-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"name": "20200804 GRUB2 Arbitrary Code Execution Vulnerability",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"name": "openSUSE-SU-2020:1169",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"name": "openSUSE-SU-2020:1168",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"name": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"refsource": "MISC",
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"name": "https://kb.vmware.com/s/article/80181",
"refsource": "MISC",
"url": "https://kb.vmware.com/s/article/80181"
},
{
"name": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713",
"refsource": "MISC",
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"name": "GLSA-202104-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202104-05"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2020-10713",
"datePublished": "2020-07-30T12:58:30",
"dateReserved": "2020-03-20T00:00:00",
"dateUpdated": "2024-08-04T11:14:14.235Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2020-10713\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2020-07-30T13:15:10.940\",\"lastModified\":\"2024-11-21T04:55:54.533\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en grub2, versiones anteriores a 2.06. Un atacante puede usar el fallo de GRUB 2 para secuestrar y manipular el proceso de verificaci\u00f3n de GRUB. Este fallo tambi\u00e9n permite omitir las protecciones de Secure Boot. A fin de cargar un kernel no confiable o modificado, un atacante primero necesitar\u00eda establecer acceso al sistema, tal y como conseguir acceso f\u00edsico, obtener la capacidad de alterar una red pxe-boot o tener acceso remoto a un sistema de red con acceso root. Con este acceso, un atacante podr\u00eda dise\u00f1ar una cadena para causar un desbordamiento del b\u00fafer al inyectar una carga \u00fatil maliciosa que conlleve a una ejecuci\u00f3n de c\u00f3digo arbitraria dentro de GRUB. La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.5,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.06\",\"matchCriteriaId\":\"01F8D62F-70BB-4718-A095-D68540C17EEA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B009C22E-30A4-4288-BCF6-C3E81DEAF45A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:vmware:photon_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.0\",\"matchCriteriaId\":\"742D1040-10F3-4680-86FE-5588B69ECF98\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2020/07/29/3\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1825243\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Technical Description\",\"Third Party Advisory\"]},{\"url\":\"https://kb.vmware.com/s/article/80181\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202104-05\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20200731-0008/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4432-1/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4735\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/174059\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2020/07/29/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1825243\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Technical Description\",\"Third Party Advisory\"]},{\"url\":\"https://kb.vmware.com/s/article/80181\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202104-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20200731-0008/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4432-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4735\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/174059\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]}]}}"
}
}
rhsa-2020:4172
Vulnerability from csaf_redhat
Published
2020-10-05 13:11
Modified
2025-08-02 13:35
Summary
Red Hat Security Advisory: Red Hat Virtualization security, bug fix, and enhancement update
Notes
Topic
An update for cockpit-ovirt, imgbased, redhat-release-virtualization-host, and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
The following packages have been upgraded to a later upstream version: cockpit-ovirt (0.14.11), imgbased (1.2.12), redhat-release-virtualization-host (4.4.2), redhat-virtualization-host (4.4.2). (BZ#1875362, BZ#1878045)
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* QEMU: usb: out-of-bounds r/w access issue while processing usb packets (CVE-2020-14364)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for cockpit-ovirt, imgbased, redhat-release-virtualization-host, and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks. \n\nThe ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks.\n\nThe following packages have been upgraded to a later upstream version: cockpit-ovirt (0.14.11), imgbased (1.2.12), redhat-release-virtualization-host (4.4.2), redhat-virtualization-host (4.4.2). (BZ#1875362, BZ#1878045)\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* QEMU: usb: out-of-bounds r/w access issue while processing usb packets (CVE-2020-14364)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:4172",
"url": "https://access.redhat.com/errata/RHSA-2020:4172"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1805589",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1805589"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1847547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847547"
},
{
"category": "external",
"summary": "1852721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852721"
},
{
"category": "external",
"summary": "1859876",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1859876"
},
{
"category": "external",
"summary": "1868312",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1868312"
},
{
"category": "external",
"summary": "1869201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201"
},
{
"category": "external",
"summary": "1873049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873049"
},
{
"category": "external",
"summary": "1875362",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1875362"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4172.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Virtualization security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2025-08-02T13:35:22+00:00",
"generator": {
"date": "2025-08-02T13:35:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:4172",
"initial_release_date": "2020-10-05T13:11:13+00:00",
"revision_history": [
{
"date": "2020-10-05T13:11:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-10-05T13:11:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:35:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product": {
"name": "RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product": {
"name": "Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "8Base-RHV-Agents-4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product": {
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"product": {
"name": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"product_id": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.4.2-1.el8ev?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"product": {
"name": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"product_id": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.4.2-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "cockpit-ovirt-0:0.14.11-1.el8ev.src",
"product": {
"name": "cockpit-ovirt-0:0.14.11-1.el8ev.src",
"product_id": "cockpit-ovirt-0:0.14.11-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cockpit-ovirt@0.14.11-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"product": {
"name": "redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"product_id": "redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host@4.4.2-20200930.0.el8_2?arch=src"
}
}
},
{
"category": "product_version",
"name": "imgbased-0:1.2.12-0.1.el8ev.src",
"product": {
"name": "imgbased-0:1.2.12-0.1.el8ev.src",
"product_id": "imgbased-0:1.2.12-0.1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/imgbased@1.2.12-0.1.el8ev?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch",
"product_id": "redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update-placeholder@4.4.2-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"product": {
"name": "cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"product_id": "cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cockpit-ovirt-dashboard@0.14.11-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"product_id": "redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update@4.4.2-20200930.0.el8_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "imgbased-0:1.2.12-0.1.el8ev.noarch",
"product": {
"name": "imgbased-0:1.2.12-0.1.el8ev.noarch",
"product_id": "imgbased-0:1.2.12-0.1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/imgbased@1.2.12-0.1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"product": {
"name": "python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"product_id": "python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-imgbased@1.2.12-0.1.el8ev?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-ovirt-0:0.14.11-1.el8ev.src as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src"
},
"product_reference": "cockpit-ovirt-0:0.14.11-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-Agents-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch as a component of Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts",
"product_id": "8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch"
},
"product_reference": "cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-Agents-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src"
},
"product_reference": "redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "imgbased-0:1.2.12-0.1.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch"
},
"product_reference": "imgbased-0:1.2.12-0.1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "imgbased-0:1.2.12-0.1.el8ev.src as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src"
},
"product_reference": "imgbased-0:1.2.12-0.1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-imgbased-0:1.2.12-0.1.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch"
},
"product_reference": "python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.src as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src"
},
"product_reference": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64 as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64"
},
"product_reference": "redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch"
],
"known_not_affected": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-10-05T13:11:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:4172"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Xiao Wei"
],
"organization": "360.com"
},
{
"names": [
"Ziming Zhang"
]
}
],
"cve": "CVE-2020-14364",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-08-13T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1869201"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU. This issue occurs while processing USB packets from a guest when USBDevice \u0027setup_len\u0027 exceeds its \u0027data_buf[4096]\u0027 in the do_token_in, do_token_out routines. This flaw allows a guest user to crash the QEMU process, resulting in a denial of service, or the potential execution of arbitrary code with the privileges of the QEMU process on the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: usb: out-of-bounds r/w access issue while processing usb packets",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the version of the qemu-kvm package as shipped with the Red Hat Enterprise Linux 6, 7 and 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7 and 8 may\naddress this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is not currently planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform 15 and newer consume fixes directly from the Red Hat Enterprise Linux 8 Advanced Virtualization repository.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch"
],
"known_not_affected": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14364"
},
{
"category": "external",
"summary": "RHBZ#1869201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14364",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14364"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14364",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14364"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/08/24/2",
"url": "https://www.openwall.com/lists/oss-security/2020/08/24/2"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/08/24/3",
"url": "https://www.openwall.com/lists/oss-security/2020/08/24/3"
}
],
"release_date": "2020-08-24T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-10-05T13:11:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:4172"
},
{
"category": "workaround",
"details": "Using Libvirt management interface to manage guest VMs significantly reduces impact of this issue. Libvirt starts each guest process with an unprivileged system user(ex. qemu) privileges and further confines the process with strict sVirt and SELinux policies.\n\n* https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/virtualization_security_guide/",
"product_ids": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHV-Agents-4:cockpit-ovirt-0:0.14.11-1.el8ev.src",
"8Base-RHV-Agents-4:cockpit-ovirt-dashboard-0:0.14.11-1.el8ev.noarch",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.2-20200930.0.el8_2.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.2-20200930.0.el8_2.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.12-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.12-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.2-1.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.2-1.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: usb: out-of-bounds r/w access issue while processing usb packets"
}
]
}
rhsa-2020:3271
Vulnerability from csaf_redhat
Published
2020-08-03 12:03
Modified
2025-08-02 13:32
Summary
Red Hat Security Advisory: grub2 security and bug fix update
Notes
Topic
An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupdate packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* grub2 should get resynced with 7.8 branch (BZ#1861857)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupdate packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* grub2 should get resynced with 7.8 branch (BZ#1861857)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3271",
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "1861857",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861857"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3271.json"
}
],
"title": "Red Hat Security Advisory: grub2 security and bug fix update",
"tracking": {
"current_release_date": "2025-08-02T13:32:58+00:00",
"generator": {
"date": "2025-08-02T13:32:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3271",
"initial_release_date": "2020-08-03T12:03:05+00:00",
"revision_history": [
{
"date": "2020-08-03T12:03:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T12:03:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:32:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupdate-devel-0:12-6.el7_6.x86_64",
"product": {
"name": "fwupdate-devel-0:12-6.el7_6.x86_64",
"product_id": "fwupdate-devel-0:12-6.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-devel@12-6.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"product": {
"name": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"product_id": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-debuginfo@12-6.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:12-6.el7_6.x86_64",
"product": {
"name": "fwupdate-0:12-6.el7_6.x86_64",
"product_id": "fwupdate-0:12-6.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@12-6.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-efi-0:12-6.el7_6.x86_64",
"product": {
"name": "fwupdate-efi-0:12-6.el7_6.x86_64",
"product_id": "fwupdate-efi-0:12-6.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-efi@12-6.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-libs-0:12-6.el7_6.x86_64",
"product": {
"name": "fwupdate-libs-0:12-6.el7_6.x86_64",
"product_id": "fwupdate-libs-0:12-6.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-libs@12-6.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-0:15-8.el7_6.x86_64",
"product": {
"name": "mokutil-0:15-8.el7_6.x86_64",
"product_id": "mokutil-0:15-8.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil@15-8.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15-8.el7_6.x86_64",
"product": {
"name": "shim-ia32-0:15-8.el7_6.x86_64",
"product_id": "shim-ia32-0:15-8.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-8.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-8.el7_6.x86_64",
"product": {
"name": "shim-x64-0:15-8.el7_6.x86_64",
"product_id": "shim-x64-0:15-8.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-8.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-debuginfo-0:15-8.el7_6.x86_64",
"product": {
"name": "mokutil-debuginfo-0:15-8.el7_6.x86_64",
"product_id": "mokutil-debuginfo-0:15-8.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil-debuginfo@15-8.el7_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupdate-0:12-6.el7_6.src",
"product": {
"name": "fwupdate-0:12-6.el7_6.src",
"product_id": "fwupdate-0:12-6.el7_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@12-6.el7_6?arch=src"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.src",
"product_id": "grub2-1:2.02-0.86.el7_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7.src",
"product": {
"name": "shim-0:15-8.el7.src",
"product_id": "shim-0:15-8.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-signed-0:15-8.el7_6.src",
"product": {
"name": "shim-signed-0:15-8.el7_6.src",
"product_id": "shim-signed-0:15-8.el7_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-signed@15-8.el7_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_6.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_6?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"product": {
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"product_id": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aa64-debuginfo@15-8.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_6?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.ppc64",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64",
"product_id": "grub2-1:2.02-0.86.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"product": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"product_id": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_6?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"product_id": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src"
},
"product_reference": "fwupdate-0:12-6.el7_6.src",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.src",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src"
},
"product_reference": "shim-signed-0:15-8.el7_6.src",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src"
},
"product_reference": "fwupdate-0:12-6.el7_6.src",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.src",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src"
},
"product_reference": "fwupdate-0:12-6.el7_6.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_6.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src"
},
"product_reference": "shim-signed-0:15-8.el7_6.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.src",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src"
},
"product_reference": "fwupdate-0:12-6.el7_6.src",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.src",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.src",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:03:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7ComputeNode-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7ComputeNode-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7ComputeNode-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:mokutil-debuginfo-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-0:15-8.el7.src",
"7Server-7.6.EUS:shim-ia32-0:15-8.el7_6.x86_64",
"7Server-7.6.EUS:shim-signed-0:15-8.el7_6.src",
"7Server-7.6.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.6.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.6.EUS:shim-x64-0:15-8.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.src",
"7Server-optional-7.6.EUS:fwupdate-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-debuginfo-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-devel-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-efi-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:fwupdate-libs-0:12-6.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3273
Vulnerability from csaf_redhat
Published
2020-08-03 10:59
Modified
2025-08-02 13:33
Summary
Red Hat Security Advisory: grub2 security and bug fix update
Notes
Topic
An update for grub2, shim, and shim-signed is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* grub2 should get resynced with 7.8 branch (BZ#1861861)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, and shim-signed is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* grub2 should get resynced with 7.8 branch (BZ#1861861)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3273",
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861861"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3273.json"
}
],
"title": "Red Hat Security Advisory: grub2 security and bug fix update",
"tracking": {
"current_release_date": "2025-08-02T13:33:26+00:00",
"generator": {
"date": "2025-08-02T13:33:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3273",
"initial_release_date": "2020-08-03T10:59:05+00:00",
"revision_history": [
{
"date": "2020-08-03T10:59:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T10:59:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:33:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.2::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.2::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-0:15-8.el7_2.x86_64",
"product": {
"name": "mokutil-0:15-8.el7_2.x86_64",
"product_id": "mokutil-0:15-8.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil@15-8.el7_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7_2.x86_64",
"product": {
"name": "shim-0:15-8.el7_2.x86_64",
"product_id": "shim-0:15-8.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-debuginfo-0:15-8.el7_2.x86_64",
"product": {
"name": "mokutil-debuginfo-0:15-8.el7_2.x86_64",
"product_id": "mokutil-debuginfo-0:15-8.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil-debuginfo@15-8.el7_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_2.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_2.src",
"product_id": "grub2-1:2.02-0.86.el7_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7.src",
"product": {
"name": "shim-0:15-8.el7.src",
"product_id": "shim-0:15-8.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-signed-0:15-8.el7_2.src",
"product": {
"name": "shim-signed-0:15-8.el7_2.src",
"product_id": "shim-signed-0:15-8.el7_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-signed@15-8.el7_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.src",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64"
},
"product_reference": "shim-0:15-8.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src"
},
"product_reference": "shim-signed-0:15-8.el7_2.src",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.src",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T10:59:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:mokutil-debuginfo-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-0:15-8.el7.src",
"7Server-7.2.AUS:shim-0:15-8.el7_2.x86_64",
"7Server-7.2.AUS:shim-signed-0:15-8.el7_2.src",
"7Server-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.x86_64",
"7Server-optional-7.2.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.2.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.2.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
}
]
}
rhsa-2020:3276
Vulnerability from csaf_redhat
Published
2020-08-03 12:06
Modified
2025-08-02 13:33
Summary
Red Hat Security Advisory: grub2 security and bug fix update
Notes
Topic
An update for grub2, shim, and shim-signed is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* grub2 should get resynced with 7.8 branch (BZ#1861860)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, and shim-signed is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* grub2 should get resynced with 7.8 branch (BZ#1861860)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3276",
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "1861860",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861860"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3276.json"
}
],
"title": "Red Hat Security Advisory: grub2 security and bug fix update",
"tracking": {
"current_release_date": "2025-08-02T13:33:17+00:00",
"generator": {
"date": "2025-08-02T13:33:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3276",
"initial_release_date": "2020-08-03T12:06:43+00:00",
"revision_history": [
{
"date": "2020-08-03T12:06:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T12:06:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:33:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.3::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-0:15-8.el7_3.x86_64",
"product": {
"name": "mokutil-0:15-8.el7_3.x86_64",
"product_id": "mokutil-0:15-8.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil@15-8.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7_3.x86_64",
"product": {
"name": "shim-0:15-8.el7_3.x86_64",
"product_id": "shim-0:15-8.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-debuginfo-0:15-8.el7_3.x86_64",
"product": {
"name": "mokutil-debuginfo-0:15-8.el7_3.x86_64",
"product_id": "mokutil-debuginfo-0:15-8.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil-debuginfo@15-8.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7.src",
"product": {
"name": "grub2-1:2.02-0.86.el7.src",
"product_id": "grub2-1:2.02-0.86.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7.src",
"product": {
"name": "shim-0:15-8.el7.src",
"product_id": "shim-0:15-8.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-signed-0:15-8.el7_3.src",
"product": {
"name": "shim-signed-0:15-8.el7_3.src",
"product_id": "shim-signed-0:15-8.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-signed@15-8.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7.src",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64"
},
"product_reference": "shim-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_3.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src"
},
"product_reference": "shim-signed-0:15-8.el7_3.src",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7.src",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64"
},
"product_reference": "shim-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_3.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src"
},
"product_reference": "shim-signed-0:15-8.el7_3.src",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7.src",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64"
},
"product_reference": "shim-0:15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_3.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src"
},
"product_reference": "shim-signed-0:15-8.el7_3.src",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7.src",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7.src",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7.src",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:06:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.AUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-0:15-8.el7.src",
"7Server-7.3.AUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.AUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.E4S:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-0:15-8.el7.src",
"7Server-7.3.E4S:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.E4S:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-7.3.TUS:mokutil-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:mokutil-debuginfo-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-0:15-8.el7.src",
"7Server-7.3.TUS:shim-0:15-8.el7_3.x86_64",
"7Server-7.3.TUS:shim-signed-0:15-8.el7_3.src",
"7Server-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.AUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.E4S:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-ppc64le-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.ppc64le",
"7Server-optional-7.3.E4S:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.E4S:shim-0:15-8.el7.src",
"7Server-optional-7.3.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.src",
"7Server-optional-7.3.TUS:grub2-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-common-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-debuginfo-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-ia32-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-efi-x64-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-pc-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-pc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7.noarch",
"7Server-optional-7.3.TUS:grub2-tools-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-extra-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:grub2-tools-minimal-1:2.02-0.86.el7.x86_64",
"7Server-optional-7.3.TUS:shim-0:15-8.el7.src",
"7Server-optional-7.3.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-optional-7.3.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3217
Vulnerability from csaf_redhat
Published
2020-07-29 19:42
Modified
2025-08-02 13:33
Summary
Red Hat Security Advisory: grub2 security and bug fix update
Notes
Topic
An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
[Updated 3 August 2020]
The shim and shim-signed packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3265, that were released on 1 August 2020 to address this issue.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupdate packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* grub2 doesn't handle relative paths correctly for UEFI HTTP Boot (BZ#1616395)
* UEFI HTTP boot over IPv6 does not work (BZ#1732765)
Users of grub2 are advised to upgrade to these updated packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\n[Updated 3 August 2020]\n\nThe shim and shim-signed packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3265, that were released on 1 August 2020 to address this issue.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupdate packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* grub2 doesn\u0027t handle relative paths correctly for UEFI HTTP Boot (BZ#1616395)\n\n* UEFI HTTP boot over IPv6 does not work (BZ#1732765)\n\nUsers of grub2 are advised to upgrade to these updated packages, which fix these bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3217",
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHBA-2020:3265",
"url": "https://access.redhat.com/errata/RHBA-2020:3265"
},
{
"category": "external",
"summary": "1616395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616395"
},
{
"category": "external",
"summary": "1732765",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1732765"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3217.json"
}
],
"title": "Red Hat Security Advisory: grub2 security and bug fix update",
"tracking": {
"current_release_date": "2025-08-02T13:33:40+00:00",
"generator": {
"date": "2025-08-02T13:33:40+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3217",
"initial_release_date": "2020-07-29T19:42:24+00:00",
"revision_history": [
{
"date": "2020-07-29T19:42:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T16:20:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:33:40+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-0:15-7.el7_9.src",
"product": {
"name": "shim-0:15-7.el7_9.src",
"product_id": "shim-0:15-7.el7_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-7.el7_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:12-6.el7_8.src",
"product": {
"name": "fwupdate-0:12-6.el7_8.src",
"product_id": "fwupdate-0:12-6.el7_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@12-6.el7_8?arch=src"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_8.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_8.src",
"product_id": "grub2-1:2.02-0.86.el7_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_8?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-signed-0:15-7.el7_8.src",
"product": {
"name": "shim-signed-0:15-7.el7_8.src",
"product_id": "shim-signed-0:15-7.el7_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-signed@15-7.el7_8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"product": {
"name": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"product_id": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32@15-7.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"product_id": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-7.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:12-6.el7_8.x86_64",
"product": {
"name": "fwupdate-0:12-6.el7_8.x86_64",
"product_id": "fwupdate-0:12-6.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@12-6.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-efi-0:12-6.el7_8.x86_64",
"product": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64",
"product_id": "fwupdate-efi-0:12-6.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-efi@12-6.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-libs-0:12-6.el7_8.x86_64",
"product": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64",
"product_id": "fwupdate-libs-0:12-6.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-libs@12-6.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"product": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"product_id": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-debuginfo@12-6.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-devel-0:12-6.el7_8.x86_64",
"product": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64",
"product_id": "fwupdate-devel-0:12-6.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-devel@12-6.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "mokutil-0:15-7.el7_8.x86_64",
"product": {
"name": "mokutil-0:15-7.el7_8.x86_64",
"product_id": "mokutil-0:15-7.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil@15-7.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15-7.el7_8.x86_64",
"product": {
"name": "shim-ia32-0:15-7.el7_8.x86_64",
"product_id": "shim-ia32-0:15-7.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-7.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-7.el7_8.x86_64",
"product": {
"name": "shim-x64-0:15-7.el7_8.x86_64",
"product_id": "shim-x64-0:15-7.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-7.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"product": {
"name": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"product_id": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil-debuginfo@15-7.el7_8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_8?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_8.ppc64",
"product": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64",
"product_id": "grub2-1:2.02-0.86.el7_8.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_8?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"product": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"product_id": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_8?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"product_id": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_8?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_8?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_8?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_8?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_8.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_8?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_8?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_8?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_8?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_8?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_8?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-7.el7_9.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:shim-0:15-7.el7_9.src"
},
"product_reference": "shim-0:15-7.el7_9.src",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-ia32-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-7.el7_8.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:shim-signed-0:15-7.el7_8.src"
},
"product_reference": "shim-signed-0:15-7.el7_8.src",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-x64-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Client-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Client-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-7.el7_9.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src"
},
"product_reference": "shim-0:15-7.el7_9.src",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-ia32-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-7.el7_8.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src"
},
"product_reference": "shim-signed-0:15-7.el7_8.src",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-x64-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-7.el7_9.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:shim-0:15-7.el7_9.src"
},
"product_reference": "shim-0:15-7.el7_9.src",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-ia32-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-7.el7_8.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:shim-signed-0:15-7.el7_8.src"
},
"product_reference": "shim-signed-0:15-7.el7_8.src",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-x64-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Server-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Server-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-7.el7_9.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:shim-0:15-7.el7_9.src"
},
"product_reference": "shim-0:15-7.el7_9.src",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-ia32-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-7.el7_8.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src"
},
"product_reference": "shim-signed-0:15-7.el7_8.src",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-7.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-7.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64"
},
"product_reference": "shim-x64-0:15-7.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src"
},
"product_reference": "fwupdate-0:12-6.el7_8.src",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.src",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.8.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:42:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Client-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-0:15-7.el7_9.src",
"7Client-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Client-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Client-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Client-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Client-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Client-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Client-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-0:15-7.el7_9.src",
"7ComputeNode-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7ComputeNode-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7ComputeNode-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7ComputeNode-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7ComputeNode-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7ComputeNode-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7ComputeNode-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Server-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-0:15-7.el7_9.src",
"7Server-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Server-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Server-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Server-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Server-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Server-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Server-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:mokutil-debuginfo-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-0:15-7.el7_9.src",
"7Workstation-7.8.Z:shim-ia32-0:15-7.el7_8.x86_64",
"7Workstation-7.8.Z:shim-signed-0:15-7.el7_8.src",
"7Workstation-7.8.Z:shim-unsigned-ia32-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-unsigned-x64-0:15-7.el7_9.x86_64",
"7Workstation-7.8.Z:shim-x64-0:15-7.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.src",
"7Workstation-optional-7.8.Z:fwupdate-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-debuginfo-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-devel-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-efi-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:fwupdate-libs-0:12-6.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.src",
"7Workstation-optional-7.8.Z:grub2-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-common-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-debuginfo-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-aa64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-ia32-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-efi-x64-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-cdboot-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-efi-x64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-pc-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-pc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-ppc64-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-ppc64le-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-ppc64le-modules-1:2.02-0.86.el7_8.noarch",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-extra-1:2.02-0.86.el7_8.x86_64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.ppc64le",
"7Workstation-optional-7.8.Z:grub2-tools-minimal-1:2.02-0.86.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3227
Vulnerability from csaf_redhat
Published
2020-07-29 20:16
Modified
2025-08-02 13:32
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2, shim, and fwupd is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
[Updated 3 August 2020]
The shim packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3264, that were released on 1 August 2020 to address this issue.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupd packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, and fwupd is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\n[Updated 3 August 2020]\n\nThe shim packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3264, that were released on 1 August 2020 to address this issue.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3227",
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHBA-2020:3264",
"url": "https://access.redhat.com/errata/RHBA-2020:3264"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3227.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2025-08-02T13:32:56+00:00",
"generator": {
"date": "2025-08-02T13:32:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3227",
"initial_release_date": "2020-07-29T20:16:34+00:00",
"revision_history": [
{
"date": "2020-07-29T20:16:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T15:49:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:32:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:8.0::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-0:15-14.el8_0.src",
"product": {
"name": "shim-0:15-14.el8_0.src",
"product_id": "shim-0:15-14.el8_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-14.el8_0?arch=src"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-87.el8_0.src",
"product": {
"name": "grub2-1:2.02-87.el8_0.src",
"product_id": "grub2-1:2.02-87.el8_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-87.el8_0?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_0.src",
"product": {
"name": "fwupd-0:1.1.4-2.el8_0.src",
"product_id": "fwupd-0:1.1.4-2.el8_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-ia32-0:15-14.el8_0.x86_64",
"product": {
"name": "shim-ia32-0:15-14.el8_0.x86_64",
"product_id": "shim-ia32-0:15-14.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-14.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-14.el8_0.x86_64",
"product": {
"name": "shim-x64-0:15-14.el8_0.x86_64",
"product_id": "shim-x64-0:15-14.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-14.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-pc-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-pc-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-debugsource-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_0.x86_64",
"product": {
"name": "fwupd-0:1.1.4-2.el8_0.x86_64",
"product_id": "fwupd-0:1.1.4-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"product_id": "fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"product_id": "fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-2.el8_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-87.el8_0.noarch",
"product": {
"name": "grub2-common-1:2.02-87.el8_0.noarch",
"product_id": "grub2-common-1:2.02-87.el8_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_0?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_0?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_0?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_0?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-87.el8_0.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-87.el8_0.noarch",
"product_id": "grub2-pc-modules-1:2.02-87.el8_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_0?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_0?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-tools-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_0.ppc64le",
"product": {
"name": "fwupd-0:1.1.4-2.el8_0.ppc64le",
"product_id": "fwupd-0:1.1.4-2.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"product": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"product_id": "fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-2.el8_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"product_id": "fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-2.el8_0?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le"
},
"product_reference": "fwupd-0:1.1.4-2.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_0.src as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src"
},
"product_reference": "fwupd-0:1.1.4-2.el8_0.src",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64"
},
"product_reference": "fwupd-0:1.1.4-2.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le"
},
"product_reference": "fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-87.el8_0.src as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src"
},
"product_reference": "grub2-1:2.02-87.el8_0.src",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-87.el8_0.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch"
},
"product_reference": "grub2-common-1:2.02-87.el8_0.noarch",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_0.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-pc-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-87.el8_0.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-87.el8_0.noarch",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_0.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-14.el8_0.src as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src"
},
"product_reference": "shim-0:15-14.el8_0.src",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-14.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64"
},
"product_reference": "shim-ia32-0:15-14.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-14.el8_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v. 8.0)",
"product_id": "BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
},
"product_reference": "shim-x64-0:15-14.el8_0.x86_64",
"relates_to_product_reference": "BaseOS-8.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T20:16:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.src",
"BaseOS-8.0.0.Z.E4S:fwupd-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debuginfo-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:fwupd-debugsource-0:1.1.4-2.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-1:2.02-87.el8_0.src",
"BaseOS-8.0.0.Z.E4S:grub2-common-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-debugsource-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-aa64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-ia32-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-cdboot-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-efi-x64-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-pc-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-pc-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-ppc64le-modules-1:2.02-87.el8_0.noarch",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-efi-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-extra-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.ppc64le",
"BaseOS-8.0.0.Z.E4S:grub2-tools-minimal-debuginfo-1:2.02-87.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-0:15-14.el8_0.src",
"BaseOS-8.0.0.Z.E4S:shim-ia32-0:15-14.el8_0.x86_64",
"BaseOS-8.0.0.Z.E4S:shim-x64-0:15-14.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3223
Vulnerability from csaf_redhat
Published
2020-07-29 19:40
Modified
2025-08-02 13:32
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2, shim, shim-unsigned-x64, and fwupd is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
[Updated 3 August 2020]
The shim and shim-unsigned-x64 packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3263, that were released on 1 August 2020 to address this issue.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupd packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, shim-unsigned-x64, and fwupd is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\n[Updated 3 August 2020]\n\nThe shim and shim-unsigned-x64 packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3263, that were released on 1 August 2020 to address this issue.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3223",
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHBA-2020:3263",
"url": "https://access.redhat.com/errata/RHBA-2020:3263"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3223.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2025-08-02T13:32:48+00:00",
"generator": {
"date": "2025-08-02T13:32:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3223",
"initial_release_date": "2020-07-29T19:40:03+00:00",
"revision_history": [
{
"date": "2020-07-29T19:40:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T16:00:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:32:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product": {
"name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.1::crb"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-7.el8.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-7.el8.x86_64",
"product_id": "shim-unsigned-x64-0:15-7.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-7.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-pc-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-pc-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-debugsource-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_1.x86_64",
"product": {
"name": "fwupd-0:1.1.4-2.el8_1.x86_64",
"product_id": "fwupd-0:1.1.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"product_id": "fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"product_id": "fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15-14.el8_1.x86_64",
"product": {
"name": "shim-ia32-0:15-14.el8_1.x86_64",
"product_id": "shim-ia32-0:15-14.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-14.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-14.el8_1.x86_64",
"product": {
"name": "shim-x64-0:15-14.el8_1.x86_64",
"product_id": "shim-x64-0:15-14.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-14.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-7.el8.src",
"product": {
"name": "shim-unsigned-x64-0:15-7.el8.src",
"product_id": "shim-unsigned-x64-0:15-7.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-7.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-87.el8_1.src",
"product": {
"name": "grub2-1:2.02-87.el8_1.src",
"product_id": "grub2-1:2.02-87.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-87.el8_1?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_1.src",
"product": {
"name": "fwupd-0:1.1.4-2.el8_1.src",
"product_id": "fwupd-0:1.1.4-2.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-14.el8_1.src",
"product": {
"name": "shim-0:15-14.el8_1.src",
"product_id": "shim-0:15-14.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-14.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-87.el8_1.noarch",
"product": {
"name": "grub2-common-1:2.02-87.el8_1.noarch",
"product_id": "grub2-common-1:2.02-87.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-87.el8_1.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-87.el8_1.noarch",
"product_id": "grub2-pc-modules-1:2.02-87.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_1?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-tools-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-debugsource-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_1.aarch64",
"product": {
"name": "fwupd-0:1.1.4-2.el8_1.aarch64",
"product_id": "fwupd-0:1.1.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"product_id": "fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"product_id": "fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "shim-aa64-0:15-14.el8_1.aarch64",
"product": {
"name": "shim-aa64-0:15-14.el8_1.aarch64",
"product_id": "shim-aa64-0:15-14.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-aa64@15-14.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-tools-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_1.ppc64le",
"product": {
"name": "fwupd-0:1.1.4-2.el8_1.ppc64le",
"product_id": "fwupd-0:1.1.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"product": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"product_id": "fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"product_id": "fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-2.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-2.el8_1.s390x",
"product": {
"name": "fwupd-0:1.1.4-2.el8_1.s390x",
"product_id": "fwupd-0:1.1.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"product": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"product_id": "fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"product_id": "fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-2.el8_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64"
},
"product_reference": "fwupd-0:1.1.4-2.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le"
},
"product_reference": "fwupd-0:1.1.4-2.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x"
},
"product_reference": "fwupd-0:1.1.4-2.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src"
},
"product_reference": "fwupd-0:1.1.4-2.el8_1.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64"
},
"product_reference": "fwupd-0:1.1.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le"
},
"product_reference": "fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x"
},
"product_reference": "fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-87.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src"
},
"product_reference": "grub2-1:2.02-87.el8_1.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-87.el8_1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch"
},
"product_reference": "grub2-common-1:2.02-87.el8_1.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-pc-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-87.el8_1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-87.el8_1.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-14.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src"
},
"product_reference": "shim-0:15-14.el8_1.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-aa64-0:15-14.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64"
},
"product_reference": "shim-aa64-0:15-14.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-14.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64"
},
"product_reference": "shim-ia32-0:15-14.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-14.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64"
},
"product_reference": "shim-x64-0:15-14.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el8.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src"
},
"product_reference": "shim-unsigned-x64-0:15-7.el8.src",
"relates_to_product_reference": "CRB-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el8.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-7.el8.x86_64",
"relates_to_product_reference": "CRB-8.1.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T19:40:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15-14.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15-14.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15-14.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15-14.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3274
Vulnerability from csaf_redhat
Published
2020-08-03 12:15
Modified
2025-08-02 13:33
Summary
Red Hat Security Advisory: grub2 security and bug fix update
Notes
Topic
An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupdate packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* grub2 should get resynced with 7.8 branch (BZ#1861855)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupdate packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* grub2 should get resynced with 7.8 branch (BZ#1861855)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3274",
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "1861855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861855"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3274.json"
}
],
"title": "Red Hat Security Advisory: grub2 security and bug fix update",
"tracking": {
"current_release_date": "2025-08-02T13:33:08+00:00",
"generator": {
"date": "2025-08-02T13:33:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3274",
"initial_release_date": "2020-08-03T12:15:12+00:00",
"revision_history": [
{
"date": "2020-08-03T12:15:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T12:15:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:33:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:12-6.el7_7.x86_64",
"product": {
"name": "fwupdate-0:12-6.el7_7.x86_64",
"product_id": "fwupdate-0:12-6.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@12-6.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-efi-0:12-6.el7_7.x86_64",
"product": {
"name": "fwupdate-efi-0:12-6.el7_7.x86_64",
"product_id": "fwupdate-efi-0:12-6.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-efi@12-6.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-libs-0:12-6.el7_7.x86_64",
"product": {
"name": "fwupdate-libs-0:12-6.el7_7.x86_64",
"product_id": "fwupdate-libs-0:12-6.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-libs@12-6.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"product": {
"name": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"product_id": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-debuginfo@12-6.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-devel-0:12-6.el7_7.x86_64",
"product": {
"name": "fwupdate-devel-0:12-6.el7_7.x86_64",
"product_id": "fwupdate-devel-0:12-6.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-devel@12-6.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-0:15-8.el7_7.x86_64",
"product": {
"name": "mokutil-0:15-8.el7_7.x86_64",
"product_id": "mokutil-0:15-8.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil@15-8.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15-8.el7_7.x86_64",
"product": {
"name": "shim-ia32-0:15-8.el7_7.x86_64",
"product_id": "shim-ia32-0:15-8.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-8.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-8.el7_7.x86_64",
"product": {
"name": "shim-x64-0:15-8.el7_7.x86_64",
"product_id": "shim-x64-0:15-8.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-8.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-debuginfo-0:15-8.el7_7.x86_64",
"product": {
"name": "mokutil-debuginfo-0:15-8.el7_7.x86_64",
"product_id": "mokutil-debuginfo-0:15-8.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil-debuginfo@15-8.el7_7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.src",
"product_id": "grub2-1:2.02-0.86.el7_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:12-6.el7_7.src",
"product": {
"name": "fwupdate-0:12-6.el7_7.src",
"product_id": "fwupdate-0:12-6.el7_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@12-6.el7_7?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7.src",
"product": {
"name": "shim-0:15-8.el7.src",
"product_id": "shim-0:15-8.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-signed-0:15-8.el7_7.src",
"product": {
"name": "shim-signed-0:15-8.el7_7.src",
"product_id": "shim-signed-0:15-8.el7_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-signed@15-8.el7_7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"product": {
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"product_id": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aa64-debuginfo@15-8.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"product": {
"name": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"product_id": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32-debuginfo@15-8.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"product": {
"name": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"product_id": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64-debuginfo@15-8.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.ppc64",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64",
"product_id": "grub2-1:2.02-0.86.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"product": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"product_id": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"product_id": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src"
},
"product_reference": "fwupdate-0:12-6.el7_7.src",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.src",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src"
},
"product_reference": "shim-signed-0:15-8.el7_7.src",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src"
},
"product_reference": "fwupdate-0:12-6.el7_7.src",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.src",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src"
},
"product_reference": "fwupdate-0:12-6.el7_7.src",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.src",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_7.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src"
},
"product_reference": "shim-signed-0:15-8.el7_7.src",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch"
},
"product_reference": "shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src"
},
"product_reference": "fwupdate-0:12-6.el7_7.src",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-devel-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-efi-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:12-6.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64"
},
"product_reference": "fwupdate-libs-0:12-6.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.src",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T12:15:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-0:15-8.el7.src",
"7ComputeNode-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7ComputeNode-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7ComputeNode-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7ComputeNode-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7ComputeNode-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7ComputeNode-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:mokutil-debuginfo-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-0:15-8.el7.src",
"7Server-7.7.EUS:shim-ia32-0:15-8.el7_7.x86_64",
"7Server-7.7.EUS:shim-signed-0:15-8.el7_7.src",
"7Server-7.7.EUS:shim-unsigned-aa64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-ia32-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.7.EUS:shim-unsigned-x64-debuginfo-0:15-8.el7.noarch",
"7Server-7.7.EUS:shim-x64-0:15-8.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.src",
"7Server-optional-7.7.EUS:fwupdate-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-debuginfo-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-devel-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-efi-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:fwupdate-libs-0:12-6.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3275
Vulnerability from csaf_redhat
Published
2020-08-03 11:18
Modified
2025-08-02 13:32
Summary
Red Hat Security Advisory: grub2 security and bug fix update
Notes
Topic
An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupdate packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* grub2 should get resynced with 7.8 branch (BZ#1861858)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupdate packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* grub2 should get resynced with 7.8 branch (BZ#1861858)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3275",
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "1861858",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861858"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3275.json"
}
],
"title": "Red Hat Security Advisory: grub2 security and bug fix update",
"tracking": {
"current_release_date": "2025-08-02T13:32:48+00:00",
"generator": {
"date": "2025-08-02T13:32:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3275",
"initial_release_date": "2020-08-03T11:18:05+00:00",
"revision_history": [
{
"date": "2020-08-03T11:18:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T11:18:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:32:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.4::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_4?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:9-10.el7_4.x86_64",
"product": {
"name": "fwupdate-0:9-10.el7_4.x86_64",
"product_id": "fwupdate-0:9-10.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@9-10.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-devel-0:9-10.el7_4.x86_64",
"product": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64",
"product_id": "fwupdate-devel-0:9-10.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-devel@9-10.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"product": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"product_id": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-debuginfo@9-10.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-efi-0:9-10.el7_4.x86_64",
"product": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64",
"product_id": "fwupdate-efi-0:9-10.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-efi@9-10.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupdate-libs-0:9-10.el7_4.x86_64",
"product": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64",
"product_id": "fwupdate-libs-0:9-10.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate-libs@9-10.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-ia32@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_id": "shim-unsigned-x64-0:15-8.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-8.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-0:15-8.el7_4.x86_64",
"product": {
"name": "mokutil-0:15-8.el7_4.x86_64",
"product_id": "mokutil-0:15-8.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil@15-8.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15-8.el7_4.x86_64",
"product": {
"name": "shim-ia32-0:15-8.el7_4.x86_64",
"product_id": "shim-ia32-0:15-8.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-8.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-8.el7_4.x86_64",
"product": {
"name": "shim-x64-0:15-8.el7_4.x86_64",
"product_id": "shim-x64-0:15-8.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-8.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mokutil-debuginfo-0:15-8.el7_4.x86_64",
"product": {
"name": "mokutil-debuginfo-0:15-8.el7_4.x86_64",
"product_id": "mokutil-debuginfo-0:15-8.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mokutil-debuginfo@15-8.el7_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_4.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_4.src",
"product_id": "grub2-1:2.02-0.86.el7_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "fwupdate-0:9-10.el7_4.src",
"product": {
"name": "fwupdate-0:9-10.el7_4.src",
"product_id": "fwupdate-0:9-10.el7_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupdate@9-10.el7_4?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-8.el7.src",
"product": {
"name": "shim-0:15-8.el7.src",
"product_id": "shim-0:15-8.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-8.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-signed-0:15-8.el7_4.src",
"product": {
"name": "shim-signed-0:15-8.el7_4.src",
"product_id": "shim-signed-0:15-8.el7_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-signed@15-8.el7_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_4.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_4.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_4?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src"
},
"product_reference": "fwupdate-0:9-10.el7_4.src",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-devel-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-efi-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-libs-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.src",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_4.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src"
},
"product_reference": "shim-signed-0:15-8.el7_4.src",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src"
},
"product_reference": "fwupdate-0:9-10.el7_4.src",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-devel-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-efi-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-libs-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.src",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_4.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src"
},
"product_reference": "shim-signed-0:15-8.el7_4.src",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src"
},
"product_reference": "fwupdate-0:9-10.el7_4.src",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-devel-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-efi-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-libs-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.src",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64"
},
"product_reference": "mokutil-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mokutil-debuginfo-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64"
},
"product_reference": "mokutil-debuginfo-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-8.el7.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:shim-0:15-8.el7.src"
},
"product_reference": "shim-0:15-8.el7.src",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64"
},
"product_reference": "shim-ia32-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-signed-0:15-8.el7_4.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src"
},
"product_reference": "shim-signed-0:15-8.el7_4.src",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-ia32-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-ia32-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-8.el7.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-8.el7.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-8.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64"
},
"product_reference": "shim-x64-0:15-8.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src"
},
"product_reference": "fwupdate-0:9-10.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-devel-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-efi-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-libs-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src"
},
"product_reference": "fwupdate-0:9-10.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-devel-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-efi-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-libs-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src"
},
"product_reference": "fwupdate-0:9-10.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-debuginfo-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-devel-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-devel-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-efi-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-efi-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupdate-libs-0:9-10.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64"
},
"product_reference": "fwupdate-libs-0:9-10.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-08-03T11:18:05+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-0:15-8.el7.src",
"7Server-7.4.AUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.AUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.AUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.AUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-0:15-8.el7.src",
"7Server-7.4.E4S:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.E4S:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.E4S:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.E4S:shim-x64-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:mokutil-debuginfo-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-0:15-8.el7.src",
"7Server-7.4.TUS:shim-ia32-0:15-8.el7_4.x86_64",
"7Server-7.4.TUS:shim-signed-0:15-8.el7_4.src",
"7Server-7.4.TUS:shim-unsigned-ia32-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-unsigned-x64-0:15-8.el7.x86_64",
"7Server-7.4.TUS:shim-x64-0:15-8.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.AUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.E4S:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.src",
"7Server-optional-7.4.TUS:fwupdate-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-debuginfo-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-devel-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-efi-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:fwupdate-libs-0:9-10.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:3216
Vulnerability from csaf_redhat
Published
2020-07-29 18:34
Modified
2025-08-02 13:33
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2, shim, shim-unsigned-x64, and fwupd is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
[Updated 3 August 2020]
The shim and shim-unsigned-x64 packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3262, that were released on 1 August 2020 to address this issue.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupd packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)
* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)
* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)
* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)
* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)
* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)
* grub2: Integer overflow in initrd size handling (CVE-2020-15707)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2, shim, shim-unsigned-x64, and fwupd is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\n[Updated 3 August 2020]\n\nThe shim and shim-unsigned-x64 packages distributed with this erratum have a known bug that can cause the boot process to hang on some systems. To prevent boot problems, customers are strongly recommended not to use the shim packages released with this erratum, and instead to apply the newer packages within RHBA-2020:3262, that were released on 1 August 2020 to address this issue.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nThe shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)\n\n* grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)\n\n* grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)\n\n* grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)\n\n* grub2: Fail kernel validation without shim protocol (CVE-2020-15705)\n\n* grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)\n\n* grub2: Integer overflow in initrd size handling (CVE-2020-15707)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:3216",
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHBA-2020:3262",
"url": "https://access.redhat.com/errata/RHBA-2020:3262"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3216.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2025-08-02T13:33:33+00:00",
"generator": {
"date": "2025-08-02T13:33:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:3216",
"initial_release_date": "2020-07-29T18:34:24+00:00",
"revision_history": [
{
"date": "2020-07-29T18:34:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-08-03T16:07:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:33:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.2.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-7.el8.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15-7.el8.x86_64",
"product_id": "shim-unsigned-x64-0:15-7.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-7.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15-14.el8_2.x86_64",
"product": {
"name": "shim-ia32-0:15-14.el8_2.x86_64",
"product_id": "shim-ia32-0:15-14.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15-14.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15-14.el8_2.x86_64",
"product": {
"name": "shim-x64-0:15-14.el8_2.x86_64",
"product_id": "shim-x64-0:15-14.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15-14.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-7.el8_2.x86_64",
"product": {
"name": "fwupd-0:1.1.4-7.el8_2.x86_64",
"product_id": "fwupd-0:1.1.4-7.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-7.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"product_id": "fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-7.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"product_id": "fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-7.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-pc-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-debugsource-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15-7.el8.src",
"product": {
"name": "shim-unsigned-x64-0:15-7.el8.src",
"product_id": "shim-unsigned-x64-0:15-7.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15-7.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-0:15-14.el8_2.src",
"product": {
"name": "shim-0:15-14.el8_2.src",
"product_id": "shim-0:15-14.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15-14.el8_2?arch=src"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-7.el8_2.src",
"product": {
"name": "fwupd-0:1.1.4-7.el8_2.src",
"product_id": "fwupd-0:1.1.4-7.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-7.el8_2?arch=src"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-87.el8_2.src",
"product": {
"name": "grub2-1:2.02-87.el8_2.src",
"product_id": "grub2-1:2.02-87.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-87.el8_2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-aa64-0:15-14.el8_2.aarch64",
"product": {
"name": "shim-aa64-0:15-14.el8_2.aarch64",
"product_id": "shim-aa64-0:15-14.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-aa64@15-14.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-7.el8_2.aarch64",
"product": {
"name": "fwupd-0:1.1.4-7.el8_2.aarch64",
"product_id": "fwupd-0:1.1.4-7.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-7.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"product_id": "fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-7.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"product_id": "fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-7.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-tools-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-debugsource-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-7.el8_2.ppc64le",
"product": {
"name": "fwupd-0:1.1.4-7.el8_2.ppc64le",
"product_id": "fwupd-0:1.1.4-7.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-7.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"product": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"product_id": "fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-7.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"product_id": "fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-7.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-tools-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-7.el8_2.s390x",
"product": {
"name": "fwupd-0:1.1.4-7.el8_2.s390x",
"product_id": "fwupd-0:1.1.4-7.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-7.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"product": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"product_id": "fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-7.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"product_id": "fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-7.el8_2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-87.el8_2.noarch",
"product": {
"name": "grub2-common-1:2.02-87.el8_2.noarch",
"product_id": "grub2-common-1:2.02-87.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-87.el8_2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-87.el8_2.noarch",
"product_id": "grub2-pc-modules-1:2.02-87.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-7.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64"
},
"product_reference": "fwupd-0:1.1.4-7.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-7.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le"
},
"product_reference": "fwupd-0:1.1.4-7.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-7.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x"
},
"product_reference": "fwupd-0:1.1.4-7.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-7.el8_2.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src"
},
"product_reference": "fwupd-0:1.1.4-7.el8_2.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-7.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64"
},
"product_reference": "fwupd-0:1.1.4-7.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le"
},
"product_reference": "fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x"
},
"product_reference": "fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-7.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-87.el8_2.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src"
},
"product_reference": "grub2-1:2.02-87.el8_2.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-87.el8_2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch"
},
"product_reference": "grub2-common-1:2.02-87.el8_2.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-87.el8_2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-87.el8_2.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15-14.el8_2.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src"
},
"product_reference": "shim-0:15-14.el8_2.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-aa64-0:15-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64"
},
"product_reference": "shim-aa64-0:15-14.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64"
},
"product_reference": "shim-ia32-0:15-14.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64"
},
"product_reference": "shim-x64-0:15-14.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el8.src as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src"
},
"product_reference": "shim-unsigned-x64-0:15-7.el8.src",
"relates_to_product_reference": "CRB-8.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15-7.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15-7.el8.x86_64",
"relates_to_product_reference": "CRB-8.2.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14308",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852009"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in current grub2 versions as shipped with Red Hat Enterprise Linux 7 and 8, where the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This issue leads the function to return invalid memory allocations, causing heap-based overflows in several code paths. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "RHBZ#1852009",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852009"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14308",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14308"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14308"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14309",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. When handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size, the name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "RHBZ#1852022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14309",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14309"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14309"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14310",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852030"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. An expected font value is not verified before proceeding with buffer allocations allowing an attacker to use a malicious font file to create an arithmetic overflow, zero-sized allocation, and further heap-based buffer overflow. The highest threat from this vulnerability is to data integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "RHBZ#1852030",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852030"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14310",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14310"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14310"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Ubuntu Security Team"
}
],
"cve": "CVE-2020-14311",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2020-06-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1852014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this vulnerability is to integrity and system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "RHBZ#1852014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14311",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14311"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14311"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow"
},
{
"cve": "CVE-2020-15705",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1860978"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Fail kernel validation without shim protocol",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "RHBZ#1860978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15705",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15705"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Fail kernel validation without shim protocol"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-15706",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861118"
}
],
"notes": [
{
"category": "description",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free redefining a function whilst the same function is already executing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "RHBZ#1861118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15706",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15706"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free redefining a function whilst the same function is already executing"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
},
{
"names": [
"Colin Watson"
],
"organization": "Debian / Canonical Ltd."
}
],
"cve": "CVE-2020-15707",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2020-07-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1861581"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Integer overflow in initrd size handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There\u0027s no mitigation available other than installing the update packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "RHBZ#1861581",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1861581"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-15707",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15707"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-07-29T18:34:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.s390x",
"BaseOS-8.2.0.Z.MAIN.EUS:fwupd-debugsource-0:1.1.4-7.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-1:2.02-87.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-common-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-debugsource-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-pc-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.noarch",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.ppc64le",
"BaseOS-8.2.0.Z.MAIN.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-0:15-14.el8_2.src",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-aa64-0:15-14.el8_2.aarch64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-ia32-0:15-14.el8_2.x86_64",
"BaseOS-8.2.0.Z.MAIN.EUS:shim-x64-0:15-14.el8_2.x86_64",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.src",
"CRB-8.2.0.Z.MAIN.EUS:shim-unsigned-x64-0:15-7.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Integer overflow in initrd size handling"
}
]
}
rhsa-2020:4115
Vulnerability from csaf_redhat
Published
2020-09-30 10:09
Modified
2025-08-02 13:34
Summary
Red Hat Security Advisory: redhat-release-virtualization-host and redhat-virtualization-host security update
Notes
Topic
An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
The following packages have been upgraded to a later upstream version: redhat-release-virtualization-host (4.3.11), redhat-virtualization-host (4.3.11). (BZ#1868307, BZ#1878044)
Security Fix(es):
* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)
* QEMU: usb: out-of-bounds r/w access issue while processing usb packets (CVE-2020-14364)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks. \n\nThe ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks.\n\nThe following packages have been upgraded to a later upstream version: redhat-release-virtualization-host (4.3.11), redhat-virtualization-host (4.3.11). (BZ#1868307, BZ#1878044)\n\nSecurity Fix(es):\n\n* grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)\n\n* QEMU: usb: out-of-bounds r/w access issue while processing usb packets (CVE-2020-14364)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:4115",
"url": "https://access.redhat.com/errata/RHSA-2020:4115"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "1845590",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1845590"
},
{
"category": "external",
"summary": "1868307",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1868307"
},
{
"category": "external",
"summary": "1869201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4115.json"
}
],
"title": "Red Hat Security Advisory: redhat-release-virtualization-host and redhat-virtualization-host security update",
"tracking": {
"current_release_date": "2025-08-02T13:34:44+00:00",
"generator": {
"date": "2025-08-02T13:34:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2020:4115",
"initial_release_date": "2020-09-30T10:09:12+00:00",
"revision_history": [
{
"date": "2020-09-30T10:09:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-09-30T10:09:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-02T13:34:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product": {
"name": "RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
},
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product": {
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::hypervisor"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"product": {
"name": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"product_id": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.3.11-1.el7ev?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"product": {
"name": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"product_id": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.3.11-1.el7ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"product": {
"name": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"product_id": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host@4.3.11-20200922.0.el7_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch",
"product_id": "redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update-placeholder@4.3.11-1.el7ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"product_id": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update@4.3.11-20200922.0.el7_9?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src"
},
"product_reference": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"relates_to_product_reference": "7Server-RHEV-4-Hypervisor-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch as a component of Red Hat Virtualization 4 Hypervisor for RHEL 7",
"product_id": "7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"relates_to_product_reference": "7Server-RHEV-4-Hypervisor-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.src as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src"
},
"product_reference": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64 as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64"
},
"product_reference": "redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src"
},
"product_reference": "redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch as a component of RHEL 7-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch",
"relates_to_product_reference": "7Server-RHEV-4-HypervisorBuild-7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Jesse Michael",
"Mickey Shkatov"
],
"organization": "Eclypsium"
}
],
"cve": "CVE-2020-10713",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2020-04-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1825243"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 7 and 8 are being updated to contain the new Red Hat certificate for secure boot.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch"
],
"known_not_affected": [
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "RHBZ#1825243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"category": "external",
"summary": "RHSB-grub2bootloader",
"url": "https://access.redhat.com/security/vulnerabilities/grub2bootloader"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-10713",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10713"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"category": "external",
"summary": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html",
"url": "https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html"
},
{
"category": "external",
"summary": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"url": "https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/07/29/3",
"url": "https://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"release_date": "2020-07-29T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-30T10:09:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:4115"
},
{
"category": "workaround",
"details": "There is no mitigation for the flaw.",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process"
},
{
"acknowledgments": [
{
"names": [
"Xiao Wei"
],
"organization": "360.com"
},
{
"names": [
"Ziming Zhang"
]
}
],
"cve": "CVE-2020-14364",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-08-13T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1869201"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU. This issue occurs while processing USB packets from a guest when USBDevice \u0027setup_len\u0027 exceeds its \u0027data_buf[4096]\u0027 in the do_token_in, do_token_out routines. This flaw allows a guest user to crash the QEMU process, resulting in a denial of service, or the potential execution of arbitrary code with the privileges of the QEMU process on the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "QEMU: usb: out-of-bounds r/w access issue while processing usb packets",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the version of the qemu-kvm package as shipped with the Red Hat Enterprise Linux 6, 7 and 8. Future qemu-kvm package updates for Red Hat Enterprise Linux 6, 7 and 8 may\naddress this issue.\n\nRed Hat Enterprise Linux 5 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This issue is not currently planned to be addressed in its future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nRed Hat OpenStack Platform 15 and newer consume fixes directly from the Red Hat Enterprise Linux 8 Advanced Virtualization repository.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch"
],
"known_not_affected": [
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14364"
},
{
"category": "external",
"summary": "RHBZ#1869201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14364",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14364"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14364",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14364"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/08/24/2",
"url": "https://www.openwall.com/lists/oss-security/2020/08/24/2"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2020/08/24/3",
"url": "https://www.openwall.com/lists/oss-security/2020/08/24/3"
}
],
"release_date": "2020-08-24T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-09-30T10:09:12+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:4115"
},
{
"category": "workaround",
"details": "Using Libvirt management interface to manage guest VMs significantly reduces impact of this issue. Libvirt starts each guest process with an unprivileged system user(ex. qemu) privileges and further confines the process with strict sVirt and SELinux policies.\n\n* https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/virtualization_security_guide/",
"product_ids": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-Hypervisor-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-release-virtualization-host-0:4.3.11-1.el7ev.x86_64",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-0:4.3.11-20200922.0.el7_9.src",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-0:4.3.11-20200922.0.el7_9.noarch",
"7Server-RHEV-4-HypervisorBuild-7:redhat-virtualization-host-image-update-placeholder-0:4.3.11-1.el7ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "QEMU: usb: out-of-bounds r/w access issue while processing usb packets"
}
]
}
suse-su-2020:2628-1
Vulnerability from csaf_suse
Published
2020-09-14 16:11
Modified
2020-09-14 16:11
Summary
Security update for shim
Notes
Title of the patch
Security update for shim
Description of the patch
This update for shim fixes the following issues:
- Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)
This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by
disallowing binaries signed by the previous SUSE UEFI signing key from booting.
This update should only be installed after updates of grub2, the Linux kernel and (if used)
Xen from July / August 2020 are applied.
Additional fixes:
+ shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656)
Patchnames
SUSE-2020-2628,SUSE-OpenStack-Cloud-7-2020-2628,SUSE-SLE-SAP-12-SP2-2020-2628,SUSE-SLE-SERVER-12-SP2-2020-2628,SUSE-SLE-SERVER-12-SP2-BCL-2020-2628
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for shim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for shim fixes the following issues:\n\n- Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)\n\nThis update addresses the \u0027BootHole\u0027 security issue (master CVE CVE-2020-10713), by\ndisallowing binaries signed by the previous SUSE UEFI signing key from booting.\n\nThis update should only be installed after updates of grub2, the Linux kernel and (if used)\nXen from July / August 2020 are applied.\n\nAdditional fixes:\n\n+ shim-install: install MokManager to \\EFI\\boot to process the pending MOK request (bsc#1175626, bsc#1175656)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2628,SUSE-OpenStack-Cloud-7-2020-2628,SUSE-SLE-SAP-12-SP2-2020-2628,SUSE-SLE-SERVER-12-SP2-2020-2628,SUSE-SLE-SERVER-12-SP2-BCL-2020-2628",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2628-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2628-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202628-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2628-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-September/007422.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1175626",
"url": "https://bugzilla.suse.com/1175626"
},
{
"category": "self",
"summary": "SUSE Bug 1175656",
"url": "https://bugzilla.suse.com/1175656"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
}
],
"title": "Security update for shim",
"tracking": {
"current_release_date": "2020-09-14T16:11:50Z",
"generator": {
"date": "2020-09-14T16:11:50Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2628-1",
"initial_release_date": "2020-09-14T16:11:50Z",
"revision_history": [
{
"date": "2020-09-14T16:11:50Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "shim-15+git47-22.8.1.x86_64",
"product": {
"name": "shim-15+git47-22.8.1.x86_64",
"product_id": "shim-15+git47-22.8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-22.8.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:shim-15+git47-22.8.1.x86_64"
},
"product_reference": "shim-15+git47-22.8.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-22.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:shim-15+git47-22.8.1.x86_64"
},
"product_reference": "shim-15+git47-22.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-22.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:shim-15+git47-22.8.1.x86_64"
},
"product_reference": "shim-15+git47-22.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-22.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:shim-15+git47-22.8.1.x86_64"
},
"product_reference": "shim-15+git47-22.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:shim-15+git47-22.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:shim-15+git47-22.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:shim-15+git47-22.8.1.x86_64",
"SUSE OpenStack Cloud 7:shim-15+git47-22.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:shim-15+git47-22.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:shim-15+git47-22.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:shim-15+git47-22.8.1.x86_64",
"SUSE OpenStack Cloud 7:shim-15+git47-22.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:shim-15+git47-22.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:shim-15+git47-22.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:shim-15+git47-22.8.1.x86_64",
"SUSE OpenStack Cloud 7:shim-15+git47-22.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-09-14T16:11:50Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
}
]
}
suse-su-2020:2078-1
Vulnerability from csaf_suse
Published
2020-07-29 17:30
Modified
2020-07-29 17:30
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
allocations may include unvalidated data
- Use grub_calloc for overflow check and return NULL when it would occur
- Use gcc-9 compiler for overflow check builtins
- Backport gcc-9 build fixes
Patchnames
SUSE-2020-2078,SUSE-OpenStack-Cloud-9-2020-2078,SUSE-OpenStack-Cloud-Crowbar-9-2020-2078,SUSE-SLE-SAP-12-SP4-2020-2078,SUSE-SLE-SERVER-12-SP4-LTSS-2020-2078,SUSE-SLE-SERVER-12-SP5-2020-2078
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n- Use overflow checking primitives where the arithmetic expression for buffer\n allocations may include unvalidated data\n- Use grub_calloc for overflow check and return NULL when it would occur \n- Use gcc-9 compiler for overflow check builtins\n- Backport gcc-9 build fixes\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2078,SUSE-OpenStack-Cloud-9-2020-2078,SUSE-OpenStack-Cloud-Crowbar-9-2020-2078,SUSE-SLE-SAP-12-SP4-2020-2078,SUSE-SLE-SERVER-12-SP4-LTSS-2020-2078,SUSE-SLE-SERVER-12-SP5-2020-2078",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2078-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2078-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202078-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2078-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007198.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T17:30:07Z",
"generator": {
"date": "2020-07-29T17:30:07Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2078-1",
"initial_release_date": "2020-07-29T17:30:07Z",
"revision_history": [
{
"date": "2020-07-29T17:30:07Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.31.1.aarch64",
"product": {
"name": "grub2-2.02-12.31.1.aarch64",
"product_id": "grub2-2.02-12.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-12.31.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-12.31.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-12.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.31.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-12.31.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-12.31.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.31.1.i586",
"product": {
"name": "grub2-2.02-12.31.1.i586",
"product_id": "grub2-2.02-12.31.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.31.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-12.31.1.i586",
"product_id": "grub2-branding-upstream-2.02-12.31.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-12.31.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-12.31.1.i586",
"product_id": "grub2-i386-efi-2.02-12.31.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-12.31.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-12.31.1.i586",
"product_id": "grub2-i386-pc-2.02-12.31.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-12.31.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"product": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"product_id": "grub2-x86_64-xen-2.02-12.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.31.1.ppc64le",
"product": {
"name": "grub2-2.02-12.31.1.ppc64le",
"product_id": "grub2-2.02-12.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.31.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-12.31.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-12.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.31.1.s390x",
"product": {
"name": "grub2-2.02-12.31.1.s390x",
"product_id": "grub2-2.02-12.31.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.31.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-12.31.1.s390x",
"product_id": "grub2-branding-upstream-2.02-12.31.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-12.31.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-12.31.1.s390x",
"product_id": "grub2-s390x-emu-2.02-12.31.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.31.1.x86_64",
"product": {
"name": "grub2-2.02-12.31.1.x86_64",
"product_id": "grub2-2.02-12.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.31.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-12.31.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-12.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-12.31.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64",
"product_id": "grub2-i386-pc-2.02-12.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-12.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64"
},
"product_reference": "grub2-2.02-12.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x"
},
"product_reference": "grub2-2.02-12.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-12.31.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-12.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-12.31.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-12.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64"
},
"product_reference": "grub2-2.02-12.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x"
},
"product_reference": "grub2-2.02-12.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-12.31.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-12.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-12.31.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-12.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64"
},
"product_reference": "grub2-2.02-12.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x"
},
"product_reference": "grub2-2.02-12.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-12.31.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-12.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-12.31.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-12.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.31.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.31.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.31.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.31.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:30:07Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
suse-su-2020:2079-1
Vulnerability from csaf_suse
Published
2020-07-29 18:01
Modified
2020-07-29 18:01
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
allocations may include unvalidated data
- Use grub_calloc for overflow check and return NULL when it would occur
- Use gcc-9 compiler for overflow check builtins
- Backport gcc-9 build fixes
- Fix packed-not-aligned error on GCC 8 (bsc#1084632)
Patchnames
HPE-Helion-OpenStack-8-2020-2079,SUSE-2020-2079,SUSE-OpenStack-Cloud-8-2020-2079,SUSE-OpenStack-Cloud-Crowbar-8-2020-2079,SUSE-SLE-SAP-12-SP3-2020-2079,SUSE-SLE-SERVER-12-SP3-2020-2079,SUSE-SLE-SERVER-12-SP3-BCL-2020-2079,SUSE-Storage-5-2020-2079
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n allocations may include unvalidated data\n- Use grub_calloc for overflow check and return NULL when it would occur \n- Use gcc-9 compiler for overflow check builtins\n- Backport gcc-9 build fixes\n- Fix packed-not-aligned error on GCC 8 (bsc#1084632)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2020-2079,SUSE-2020-2079,SUSE-OpenStack-Cloud-8-2020-2079,SUSE-OpenStack-Cloud-Crowbar-8-2020-2079,SUSE-SLE-SAP-12-SP3-2020-2079,SUSE-SLE-SERVER-12-SP3-2020-2079,SUSE-SLE-SERVER-12-SP3-BCL-2020-2079,SUSE-Storage-5-2020-2079",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2079-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2079-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202079-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2079-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007197.html"
},
{
"category": "self",
"summary": "SUSE Bug 1084632",
"url": "https://bugzilla.suse.com/1084632"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T18:01:45Z",
"generator": {
"date": "2020-07-29T18:01:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2079-1",
"initial_release_date": "2020-07-29T18:01:45Z",
"revision_history": [
{
"date": "2020-07-29T18:01:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.53.1.aarch64",
"product": {
"name": "grub2-2.02-4.53.1.aarch64",
"product_id": "grub2-2.02-4.53.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-4.53.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-4.53.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-4.53.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.53.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-4.53.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-4.53.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.53.1.i586",
"product": {
"name": "grub2-2.02-4.53.1.i586",
"product_id": "grub2-2.02-4.53.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.53.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-4.53.1.i586",
"product_id": "grub2-branding-upstream-2.02-4.53.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-4.53.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-4.53.1.i586",
"product_id": "grub2-i386-efi-2.02-4.53.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-4.53.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-4.53.1.i586",
"product_id": "grub2-i386-pc-2.02-4.53.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-4.53.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.53.1.ppc64le",
"product": {
"name": "grub2-2.02-4.53.1.ppc64le",
"product_id": "grub2-2.02-4.53.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.53.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-4.53.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-4.53.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.53.1.s390x",
"product": {
"name": "grub2-2.02-4.53.1.s390x",
"product_id": "grub2-2.02-4.53.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.53.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-4.53.1.s390x",
"product_id": "grub2-branding-upstream-2.02-4.53.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-4.53.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-4.53.1.s390x",
"product_id": "grub2-s390x-emu-2.02-4.53.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.53.1.x86_64",
"product": {
"name": "grub2-2.02-4.53.1.x86_64",
"product_id": "grub2-2.02-4.53.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-4.53.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64",
"product_id": "grub2-i386-pc-2.02-4.53.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-4.53.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02-4.53.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.53.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-4.53.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-4.53.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 5",
"product": {
"name": "SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le"
},
"product_reference": "grub2-2.02-4.53.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64"
},
"product_reference": "grub2-2.02-4.53.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le"
},
"product_reference": "grub2-2.02-4.53.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x"
},
"product_reference": "grub2-2.02-4.53.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-4.53.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-4.53.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-4.53.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-4.53.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.aarch64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64"
},
"product_reference": "grub2-2.02-4.53.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.53.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-4.53.1.aarch64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-4.53.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.53.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.53.1.noarch as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.53.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.53.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.53.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Enterprise Storage 5:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Enterprise Storage 5:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Enterprise Storage 5:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.53.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.53.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.53.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.53.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T18:01:45Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
suse-su-2020:2627-1
Vulnerability from csaf_suse
Published
2020-09-14 16:11
Modified
2020-09-14 16:11
Summary
Security update for shim
Notes
Title of the patch
Security update for shim
Description of the patch
This update for shim fixes the following issues:
- Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)
This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by
disallowing binaries signed by the previous SUSE UEFI signing key from booting.
This update should only be installed after updates of grub2, the Linux kernel and (if used)
Xen from July / August 2020 are applied.
Additional fixes:
+ shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656)
Patchnames
HPE-Helion-OpenStack-8-2020-2627,SUSE-2020-2627,SUSE-OpenStack-Cloud-8-2020-2627,SUSE-OpenStack-Cloud-9-2020-2627,SUSE-OpenStack-Cloud-Crowbar-8-2020-2627,SUSE-OpenStack-Cloud-Crowbar-9-2020-2627,SUSE-SLE-SAP-12-SP3-2020-2627,SUSE-SLE-SAP-12-SP4-2020-2627,SUSE-SLE-SERVER-12-SP3-2020-2627,SUSE-SLE-SERVER-12-SP3-BCL-2020-2627,SUSE-SLE-SERVER-12-SP4-LTSS-2020-2627,SUSE-SLE-SERVER-12-SP5-2020-2627,SUSE-Storage-5-2020-2627
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for shim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for shim fixes the following issues:\n\n- Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)\n\nThis update addresses the \u0027BootHole\u0027 security issue (master CVE CVE-2020-10713), by\ndisallowing binaries signed by the previous SUSE UEFI signing key from booting.\n\nThis update should only be installed after updates of grub2, the Linux kernel and (if used)\nXen from July / August 2020 are applied.\n\nAdditional fixes:\n\n+ shim-install: install MokManager to \\EFI\\boot to process the pending MOK request (bsc#1175626, bsc#1175656)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2020-2627,SUSE-2020-2627,SUSE-OpenStack-Cloud-8-2020-2627,SUSE-OpenStack-Cloud-9-2020-2627,SUSE-OpenStack-Cloud-Crowbar-8-2020-2627,SUSE-OpenStack-Cloud-Crowbar-9-2020-2627,SUSE-SLE-SAP-12-SP3-2020-2627,SUSE-SLE-SAP-12-SP4-2020-2627,SUSE-SLE-SERVER-12-SP3-2020-2627,SUSE-SLE-SERVER-12-SP3-BCL-2020-2627,SUSE-SLE-SERVER-12-SP4-LTSS-2020-2627,SUSE-SLE-SERVER-12-SP5-2020-2627,SUSE-Storage-5-2020-2627",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2627-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2627-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202627-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2627-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-September/007424.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1175626",
"url": "https://bugzilla.suse.com/1175626"
},
{
"category": "self",
"summary": "SUSE Bug 1175656",
"url": "https://bugzilla.suse.com/1175656"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
}
],
"title": "Security update for shim",
"tracking": {
"current_release_date": "2020-09-14T16:11:27Z",
"generator": {
"date": "2020-09-14T16:11:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2627-1",
"initial_release_date": "2020-09-14T16:11:27Z",
"revision_history": [
{
"date": "2020-09-14T16:11:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "shim-15+git47-25.11.1.x86_64",
"product": {
"name": "shim-15+git47-25.11.1.x86_64",
"product_id": "shim-15+git47-25.11.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 5",
"product": {
"name": "SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-25.11.1.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:shim-15+git47-25.11.1.x86_64"
},
"product_reference": "shim-15+git47-25.11.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:shim-15+git47-25.11.1.x86_64",
"SUSE Enterprise Storage 5:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud 8:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud 9:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:shim-15+git47-25.11.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:shim-15+git47-25.11.1.x86_64",
"SUSE Enterprise Storage 5:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud 8:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud 9:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:shim-15+git47-25.11.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:shim-15+git47-25.11.1.x86_64",
"SUSE Enterprise Storage 5:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:shim-15+git47-25.11.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud 8:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud 9:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:shim-15+git47-25.11.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:shim-15+git47-25.11.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-09-14T16:11:27Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
}
]
}
suse-su-2020:2077-1
Vulnerability from csaf_suse
Published
2020-07-29 17:28
Modified
2020-07-29 17:28
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- CVE-2020-10713 (bsc#1168994)
- CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- CVE-2020-15706 (bsc#1174463)
- CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
allocations may include unvalidated data
- Use grub_calloc for overflow check and return NULL when it would occur
Patchnames
SUSE-2020-2077,SUSE-SLE-Module-Basesystem-15-SP1-2020-2077,SUSE-SLE-Module-Server-Applications-15-SP1-2020-2077
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- CVE-2020-10713 (bsc#1168994)\n- CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- CVE-2020-15706 (bsc#1174463)\n- CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n allocations may include unvalidated data\n- Use grub_calloc for overflow check and return NULL when it would occur \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2077,SUSE-SLE-Module-Basesystem-15-SP1-2020-2077,SUSE-SLE-Module-Server-Applications-15-SP1-2020-2077",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2077-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2077-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202077-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2077-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007200.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T17:28:46Z",
"generator": {
"date": "2020-07-29T17:28:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2077-1",
"initial_release_date": "2020-07-29T17:28:46Z",
"revision_history": [
{
"date": "2020-07-29T17:28:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.25.1.aarch64",
"product": {
"name": "grub2-2.02-26.25.1.aarch64",
"product_id": "grub2-2.02-26.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.25.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-26.25.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-26.25.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.25.1.i586",
"product": {
"name": "grub2-2.02-26.25.1.i586",
"product_id": "grub2-2.02-26.25.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.25.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-26.25.1.i586",
"product_id": "grub2-branding-upstream-2.02-26.25.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-26.25.1.noarch",
"product": {
"name": "grub2-arm64-efi-2.02-26.25.1.noarch",
"product_id": "grub2-arm64-efi-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-26.25.1.noarch",
"product": {
"name": "grub2-i386-efi-2.02-26.25.1.noarch",
"product_id": "grub2-i386-efi-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-26.25.1.noarch",
"product": {
"name": "grub2-i386-pc-2.02-26.25.1.noarch",
"product_id": "grub2-i386-pc-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.02-26.25.1.noarch",
"product": {
"name": "grub2-i386-xen-2.02-26.25.1.noarch",
"product_id": "grub2-i386-xen-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"product_id": "grub2-powerpc-ieee1275-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-26.25.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-26.25.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-26.25.1.noarch",
"product": {
"name": "grub2-x86_64-efi-2.02-26.25.1.noarch",
"product_id": "grub2-x86_64-efi-2.02-26.25.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-26.25.1.noarch",
"product": {
"name": "grub2-x86_64-xen-2.02-26.25.1.noarch",
"product_id": "grub2-x86_64-xen-2.02-26.25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.25.1.ppc64le",
"product": {
"name": "grub2-2.02-26.25.1.ppc64le",
"product_id": "grub2-2.02-26.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.25.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-26.25.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-26.25.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.25.1.s390x",
"product": {
"name": "grub2-2.02-26.25.1.s390x",
"product_id": "grub2-2.02-26.25.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.25.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-26.25.1.s390x",
"product_id": "grub2-branding-upstream-2.02-26.25.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-26.25.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-26.25.1.s390x",
"product_id": "grub2-s390x-emu-2.02-26.25.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.25.1.x86_64",
"product": {
"name": "grub2-2.02-26.25.1.x86_64",
"product_id": "grub2-2.02-26.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.25.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-26.25.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-26.25.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.25.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64"
},
"product_reference": "grub2-2.02-26.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.25.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le"
},
"product_reference": "grub2-2.02-26.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.25.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x"
},
"product_reference": "grub2-2.02-26.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.25.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64"
},
"product_reference": "grub2-2.02-26.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-26.25.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-26.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.25.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-2.02-26.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-arm64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-i386-pc-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-powerpc-ieee1275-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-s390x-emu-2.02-26.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-snapper-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-systemd-sleep-plugin-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:grub2-x86_64-efi-2.02-26.25.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:grub2-x86_64-xen-2.02-26.25.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:28:46Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
suse-su-2020:14490-1
Vulnerability from csaf_suse
Published
2020-09-15 08:20
Modified
2020-09-15 08:20
Summary
Security update for shim
Notes
Title of the patch
Security update for shim
Description of the patch
This update for shim fixes the following issues:
Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)
This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by
disallowing binaries signed by the previous SUSE UEFI signing key from booting.
This update should only be installed after updates of grub2, the Linux kernel and (if used)
Xen from or after July / August 2020 are applied.
Also fixed:
+ shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656)
Patchnames
slessp4-shim-14490
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for shim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for shim fixes the following issues:\n\nUpdate to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)\n\nThis update addresses the \u0027BootHole\u0027 security issue (master CVE CVE-2020-10713), by\ndisallowing binaries signed by the previous SUSE UEFI signing key from booting.\n\nThis update should only be installed after updates of grub2, the Linux kernel and (if used)\nXen from or after July / August 2020 are applied.\n\nAlso fixed:\n\n+ shim-install: install MokManager to \\EFI\\boot to process the pending MOK request (bsc#1175626, bsc#1175656)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp4-shim-14490",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_14490-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:14490-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-202014490-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:14490-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-September/007428.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1175626",
"url": "https://bugzilla.suse.com/1175626"
},
{
"category": "self",
"summary": "SUSE Bug 1175656",
"url": "https://bugzilla.suse.com/1175656"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
}
],
"title": "Security update for shim",
"tracking": {
"current_release_date": "2020-09-15T08:20:58Z",
"generator": {
"date": "2020-09-15T08:20:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:14490-1",
"initial_release_date": "2020-09-15T08:20:58Z",
"revision_history": [
{
"date": "2020-09-15T08:20:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "shim-15+git47-12.5.1.x86_64",
"product": {
"name": "shim-15+git47-12.5.1.x86_64",
"product_id": "shim-15+git47-12.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-12.5.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:shim-15+git47-12.5.1.x86_64"
},
"product_reference": "shim-15+git47-12.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:shim-15+git47-12.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:shim-15+git47-12.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:shim-15+git47-12.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-09-15T08:20:58Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
}
]
}
suse-su-2020:2074-1
Vulnerability from csaf_suse
Published
2020-07-29 16:59
Modified
2020-07-29 16:59
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
- Use grub_calloc for overflow check and return NULL when it would occur
Patchnames
SUSE-2020-2074,SUSE-SLE-Module-Basesystem-15-SP2-2020-2074,SUSE-SLE-Module-Server-Applications-15-SP2-2020-2074
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n- Use grub_calloc for overflow check and return NULL when it would occur \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2074,SUSE-SLE-Module-Basesystem-15-SP2-2020-2074,SUSE-SLE-Module-Server-Applications-15-SP2-2020-2074",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2074-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2074-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202074-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2074-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007199.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T16:59:53Z",
"generator": {
"date": "2020-07-29T16:59:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2074-1",
"initial_release_date": "2020-07-29T16:59:53Z",
"revision_history": [
{
"date": "2020-07-29T16:59:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.7.1.aarch64",
"product": {
"name": "grub2-2.04-9.7.1.aarch64",
"product_id": "grub2-2.04-9.7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.7.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.04-9.7.1.aarch64",
"product_id": "grub2-branding-upstream-2.04-9.7.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.7.1.i586",
"product": {
"name": "grub2-2.04-9.7.1.i586",
"product_id": "grub2-2.04-9.7.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.7.1.i586",
"product": {
"name": "grub2-branding-upstream-2.04-9.7.1.i586",
"product_id": "grub2-branding-upstream-2.04-9.7.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-arm64-efi-2.04-9.7.1.noarch",
"product": {
"name": "grub2-arm64-efi-2.04-9.7.1.noarch",
"product_id": "grub2-arm64-efi-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-debug-2.04-9.7.1.noarch",
"product": {
"name": "grub2-arm64-efi-debug-2.04-9.7.1.noarch",
"product_id": "grub2-arm64-efi-debug-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.04-9.7.1.noarch",
"product": {
"name": "grub2-i386-efi-2.04-9.7.1.noarch",
"product_id": "grub2-i386-efi-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-debug-2.04-9.7.1.noarch",
"product": {
"name": "grub2-i386-efi-debug-2.04-9.7.1.noarch",
"product_id": "grub2-i386-efi-debug-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.04-9.7.1.noarch",
"product": {
"name": "grub2-i386-pc-2.04-9.7.1.noarch",
"product_id": "grub2-i386-pc-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.04-9.7.1.noarch",
"product": {
"name": "grub2-i386-pc-debug-2.04-9.7.1.noarch",
"product_id": "grub2-i386-pc-debug-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.04-9.7.1.noarch",
"product": {
"name": "grub2-i386-xen-2.04-9.7.1.noarch",
"product_id": "grub2-i386-xen-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"product": {
"name": "grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"product_id": "grub2-powerpc-ieee1275-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-debug-2.04-9.7.1.noarch",
"product": {
"name": "grub2-powerpc-ieee1275-debug-2.04-9.7.1.noarch",
"product_id": "grub2-powerpc-ieee1275-debug-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.04-9.7.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.04-9.7.1.noarch",
"product_id": "grub2-snapper-plugin-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.04-9.7.1.noarch",
"product": {
"name": "grub2-x86_64-efi-2.04-9.7.1.noarch",
"product_id": "grub2-x86_64-efi-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.04-9.7.1.noarch",
"product": {
"name": "grub2-x86_64-efi-debug-2.04-9.7.1.noarch",
"product_id": "grub2-x86_64-efi-debug-2.04-9.7.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.04-9.7.1.noarch",
"product": {
"name": "grub2-x86_64-xen-2.04-9.7.1.noarch",
"product_id": "grub2-x86_64-xen-2.04-9.7.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.7.1.ppc64le",
"product": {
"name": "grub2-2.04-9.7.1.ppc64le",
"product_id": "grub2-2.04-9.7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.7.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.04-9.7.1.ppc64le",
"product_id": "grub2-branding-upstream-2.04-9.7.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.7.1.s390x",
"product": {
"name": "grub2-2.04-9.7.1.s390x",
"product_id": "grub2-2.04-9.7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.7.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.04-9.7.1.s390x",
"product_id": "grub2-branding-upstream-2.04-9.7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.04-9.7.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.04-9.7.1.s390x",
"product_id": "grub2-s390x-emu-2.04-9.7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-debug-2.04-9.7.1.s390x",
"product": {
"name": "grub2-s390x-emu-debug-2.04-9.7.1.s390x",
"product_id": "grub2-s390x-emu-debug-2.04-9.7.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.7.1.x86_64",
"product": {
"name": "grub2-2.04-9.7.1.x86_64",
"product_id": "grub2-2.04-9.7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.7.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.04-9.7.1.x86_64",
"product_id": "grub2-branding-upstream-2.04-9.7.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.7.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64"
},
"product_reference": "grub2-2.04-9.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.7.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le"
},
"product_reference": "grub2-2.04-9.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.7.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x"
},
"product_reference": "grub2-2.04-9.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.7.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64"
},
"product_reference": "grub2-2.04-9.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch"
},
"product_reference": "grub2-i386-pc-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch"
},
"product_reference": "grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.04-9.7.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.04-9.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.04-9.7.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.04-9.7.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.7.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.7.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.7.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.7.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:53Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
suse-su-2020:2629-1
Vulnerability from csaf_suse
Published
2020-09-14 16:12
Modified
2020-09-14 16:12
Summary
Security update for shim
Notes
Title of the patch
Security update for shim
Description of the patch
This update for shim fixes the following issues:
This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by
disallowing binaries signed by the previous SUSE UEFI signing key from booting.
This update should only be installed after updates of grub2, the Linux kernel and (if used)
Xen from July / August 2020 are applied.
Changes:
Use vendor-dbx to block old SUSE/openSUSE signkeys (bsc#1168994)
+ Add dbx-cert.tar.xz which contains the certificates to block
and a script, generate-vendor-dbx.sh, to generate
vendor-dbx.bin
+ Add vendor-dbx.bin as the vendor dbx to block unwanted keys
- Update the path to grub-tpm.efi in shim-install (bsc#1174320)
- Only check EFI variable copying when Secure Boot is enabled (bsc#1173411)
- Use the full path of efibootmgr to avoid errors when invoking
shim-install from packagekitd (bsc#1168104)
- shim-install: add check for btrfs is used as root file system to enable
relative path lookup for file. (bsc#1153953)
- shim-install: install MokManager to \EFI\boot to process the
pending MOK request (bsc#1175626, bsc#1175656)
Patchnames
SUSE-2020-2629,SUSE-SLE-Module-Basesystem-15-SP1-2020-2629,SUSE-SLE-Module-Basesystem-15-SP2-2020-2629
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for shim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for shim fixes the following issues:\n\nThis update addresses the \u0027BootHole\u0027 security issue (master CVE CVE-2020-10713), by\ndisallowing binaries signed by the previous SUSE UEFI signing key from booting.\n\nThis update should only be installed after updates of grub2, the Linux kernel and (if used)\nXen from July / August 2020 are applied.\n\n\nChanges:\n\nUse vendor-dbx to block old SUSE/openSUSE signkeys (bsc#1168994)\n\n+ Add dbx-cert.tar.xz which contains the certificates to block\n and a script, generate-vendor-dbx.sh, to generate\n vendor-dbx.bin\n+ Add vendor-dbx.bin as the vendor dbx to block unwanted keys\n\n\n- Update the path to grub-tpm.efi in shim-install (bsc#1174320)\n- Only check EFI variable copying when Secure Boot is enabled (bsc#1173411)\n- Use the full path of efibootmgr to avoid errors when invoking\n shim-install from packagekitd (bsc#1168104)\n- shim-install: add check for btrfs is used as root file system to enable\n relative path lookup for file. (bsc#1153953) \n- shim-install: install MokManager to \\EFI\\boot to process the\n pending MOK request (bsc#1175626, bsc#1175656)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2629,SUSE-SLE-Module-Basesystem-15-SP1-2020-2629,SUSE-SLE-Module-Basesystem-15-SP2-2020-2629",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2629-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2629-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202629-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2629-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-September/007421.html"
},
{
"category": "self",
"summary": "SUSE Bug 1113225",
"url": "https://bugzilla.suse.com/1113225"
},
{
"category": "self",
"summary": "SUSE Bug 1121268",
"url": "https://bugzilla.suse.com/1121268"
},
{
"category": "self",
"summary": "SUSE Bug 1153953",
"url": "https://bugzilla.suse.com/1153953"
},
{
"category": "self",
"summary": "SUSE Bug 1168104",
"url": "https://bugzilla.suse.com/1168104"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173411",
"url": "https://bugzilla.suse.com/1173411"
},
{
"category": "self",
"summary": "SUSE Bug 1174320",
"url": "https://bugzilla.suse.com/1174320"
},
{
"category": "self",
"summary": "SUSE Bug 1175626",
"url": "https://bugzilla.suse.com/1175626"
},
{
"category": "self",
"summary": "SUSE Bug 1175656",
"url": "https://bugzilla.suse.com/1175656"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
}
],
"title": "Security update for shim",
"tracking": {
"current_release_date": "2020-09-14T16:12:03Z",
"generator": {
"date": "2020-09-14T16:12:03Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2629-1",
"initial_release_date": "2020-09-14T16:12:03Z",
"revision_history": [
{
"date": "2020-09-14T16:12:03Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "shim-15+git47-3.8.1.x86_64",
"product": {
"name": "shim-15+git47-3.8.1.x86_64",
"product_id": "shim-15+git47-3.8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:shim-15+git47-3.8.1.x86_64"
},
"product_reference": "shim-15+git47-3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:shim-15+git47-3.8.1.x86_64"
},
"product_reference": "shim-15+git47-3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:shim-15+git47-3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:shim-15+git47-3.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:shim-15+git47-3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:shim-15+git47-3.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:shim-15+git47-3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:shim-15+git47-3.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-09-14T16:12:03Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
}
]
}
suse-su-2020:2076-1
Vulnerability from csaf_suse
Published
2020-07-29 17:00
Modified
2020-07-29 17:00
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
allocations may include unvalidated data
- Use gcc-9 compiler for overflow check builtins
- Backport gcc-9 build fixes
- Fix packed-not-aligned error on GCC 8 (bsc#1084632)
- Backport gcc-7 build fixes
Patchnames
SUSE-2020-2076,SUSE-OpenStack-Cloud-7-2020-2076,SUSE-SLE-SAP-12-SP2-2020-2076,SUSE-SLE-SERVER-12-SP2-2020-2076,SUSE-SLE-SERVER-12-SP2-BCL-2020-2076
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n allocations may include unvalidated data\n- Use gcc-9 compiler for overflow check builtins\n- Backport gcc-9 build fixes\n- Fix packed-not-aligned error on GCC 8 (bsc#1084632)\n- Backport gcc-7 build fixes\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2076,SUSE-OpenStack-Cloud-7-2020-2076,SUSE-SLE-SAP-12-SP2-2020-2076,SUSE-SLE-SERVER-12-SP2-2020-2076,SUSE-SLE-SERVER-12-SP2-BCL-2020-2076",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2076-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2076-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202076-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2076-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007196.html"
},
{
"category": "self",
"summary": "SUSE Bug 1084632",
"url": "https://bugzilla.suse.com/1084632"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T17:00:59Z",
"generator": {
"date": "2020-07-29T17:00:59Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2076-1",
"initial_release_date": "2020-07-29T17:00:59Z",
"revision_history": [
{
"date": "2020-07-29T17:00:59Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02~beta2-115.49.1.aarch64",
"product": {
"name": "grub2-2.02~beta2-115.49.1.aarch64",
"product_id": "grub2-2.02~beta2-115.49.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02~beta2-115.49.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02~beta2-115.49.1.aarch64",
"product_id": "grub2-arm64-efi-2.02~beta2-115.49.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.aarch64",
"product_id": "grub2-branding-upstream-2.02~beta2-115.49.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02~beta2-115.49.1.i586",
"product": {
"name": "grub2-2.02~beta2-115.49.1.i586",
"product_id": "grub2-2.02~beta2-115.49.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.i586",
"product_id": "grub2-branding-upstream-2.02~beta2-115.49.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02~beta2-115.49.1.i586",
"product": {
"name": "grub2-i386-efi-2.02~beta2-115.49.1.i586",
"product_id": "grub2-i386-efi-2.02~beta2-115.49.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02~beta2-115.49.1.i586",
"product": {
"name": "grub2-i386-pc-2.02~beta2-115.49.1.i586",
"product_id": "grub2-i386-pc-2.02~beta2-115.49.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"product_id": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02~beta2-115.49.1.ppc64le",
"product": {
"name": "grub2-2.02~beta2-115.49.1.ppc64le",
"product_id": "grub2-2.02~beta2-115.49.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02~beta2-115.49.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02~beta2-115.49.1.s390x",
"product": {
"name": "grub2-2.02~beta2-115.49.1.s390x",
"product_id": "grub2-2.02~beta2-115.49.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.s390x",
"product_id": "grub2-branding-upstream-2.02~beta2-115.49.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"product_id": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02~beta2-115.49.1.x86_64",
"product": {
"name": "grub2-2.02~beta2-115.49.1.x86_64",
"product_id": "grub2-2.02~beta2-115.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02~beta2-115.49.1.x86_64",
"product_id": "grub2-branding-upstream-2.02~beta2-115.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"product_id": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x"
},
"product_reference": "grub2-2.02~beta2-115.49.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le"
},
"product_reference": "grub2-2.02~beta2-115.49.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le"
},
"product_reference": "grub2-2.02~beta2-115.49.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x"
},
"product_reference": "grub2-2.02~beta2-115.49.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02~beta2-115.49.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02~beta2-115.49.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02~beta2-115.49.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02~beta2-115.49.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02~beta2-115.49.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:59Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
suse-su-2020:2626-1
Vulnerability from csaf_suse
Published
2020-09-14 16:10
Modified
2020-09-14 16:10
Summary
Security update for shim
Notes
Title of the patch
Security update for shim
Description of the patch
This update for shim fixes the following issues:
- Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)
This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by
disallowing binaries signed by the previous SUSE UEFI signing key from booting.
This update should only be installed after updates of grub2, the Linux kernel and (if used)
Xen from July / August 2020 are applied.
Additional fixes:
+ shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656)
Patchnames
SUSE-2020-2626,SUSE-SLE-Product-HPC-15-2020-2626,SUSE-SLE-Product-SLES_SAP-15-2020-2626
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for shim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for shim fixes the following issues:\n\n- Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994)\n\nThis update addresses the \u0027BootHole\u0027 security issue (master CVE CVE-2020-10713), by\ndisallowing binaries signed by the previous SUSE UEFI signing key from booting.\n\nThis update should only be installed after updates of grub2, the Linux kernel and (if used)\nXen from July / August 2020 are applied.\n\nAdditional fixes:\n\n+ shim-install: install MokManager to \\EFI\\boot to process the pending MOK request (bsc#1175626, bsc#1175656)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2626,SUSE-SLE-Product-HPC-15-2020-2626,SUSE-SLE-Product-SLES_SAP-15-2020-2626",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2626-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2626-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202626-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2626-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-September/007423.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1175626",
"url": "https://bugzilla.suse.com/1175626"
},
{
"category": "self",
"summary": "SUSE Bug 1175656",
"url": "https://bugzilla.suse.com/1175656"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
}
],
"title": "Security update for shim",
"tracking": {
"current_release_date": "2020-09-14T16:10:56Z",
"generator": {
"date": "2020-09-14T16:10:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2626-1",
"initial_release_date": "2020-09-14T16:10:56Z",
"revision_history": [
{
"date": "2020-09-14T16:10:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "shim-15+git47-7.15.1.x86_64",
"product": {
"name": "shim-15+git47-7.15.1.x86_64",
"product_id": "shim-15+git47-7.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-7.15.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:shim-15+git47-7.15.1.x86_64"
},
"product_reference": "shim-15+git47-7.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-7.15.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:shim-15+git47-7.15.1.x86_64"
},
"product_reference": "shim-15+git47-7.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-15+git47-7.15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:shim-15+git47-7.15.1.x86_64"
},
"product_reference": "shim-15+git47-7.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:shim-15+git47-7.15.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:shim-15+git47-7.15.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:shim-15+git47-7.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:shim-15+git47-7.15.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:shim-15+git47-7.15.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:shim-15+git47-7.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:shim-15+git47-7.15.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:shim-15+git47-7.15.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:shim-15+git47-7.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-09-14T16:10:56Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
}
]
}
suse-su-2020:2073-1
Vulnerability from csaf_suse
Published
2020-07-29 16:59
Modified
2020-07-29 16:59
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
allocations may include unvalidated data
- Use grub_calloc for overflow check and return NULL when it would occur
- Use gcc-9 compiler for overflow check builtins
- Backport gcc-9 build fixes
Patchnames
SUSE-2020-2073,SUSE-SLE-Product-HPC-15-2020-2073,SUSE-SLE-Product-SLES-15-2020-2073,SUSE-SLE-Product-SLES_SAP-15-2020-2073
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n allocations may include unvalidated data\n- Use grub_calloc for overflow check and return NULL when it would occur \n- Use gcc-9 compiler for overflow check builtins\n- Backport gcc-9 build fixes\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-2073,SUSE-SLE-Product-HPC-15-2020-2073,SUSE-SLE-Product-SLES-15-2020-2073,SUSE-SLE-Product-SLES_SAP-15-2020-2073",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2073-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:2073-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20202073-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:2073-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007195.html"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T16:59:34Z",
"generator": {
"date": "2020-07-29T16:59:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:2073-1",
"initial_release_date": "2020-07-29T16:59:34Z",
"revision_history": [
{
"date": "2020-07-29T16:59:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.48.1.aarch64",
"product": {
"name": "grub2-2.02-19.48.1.aarch64",
"product_id": "grub2-2.02-19.48.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-19.48.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-19.48.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-19.48.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.48.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-19.48.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-19.48.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.48.1.i586",
"product": {
"name": "grub2-2.02-19.48.1.i586",
"product_id": "grub2-2.02-19.48.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.48.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-19.48.1.i586",
"product_id": "grub2-branding-upstream-2.02-19.48.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-19.48.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-19.48.1.i586",
"product_id": "grub2-i386-efi-2.02-19.48.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-19.48.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-19.48.1.i586",
"product_id": "grub2-i386-pc-2.02-19.48.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.02-19.48.1.i586",
"product": {
"name": "grub2-i386-xen-2.02-19.48.1.i586",
"product_id": "grub2-i386-xen-2.02-19.48.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-19.48.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-19.48.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-19.48.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.48.1.ppc64le",
"product": {
"name": "grub2-2.02-19.48.1.ppc64le",
"product_id": "grub2-2.02-19.48.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.48.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-19.48.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-19.48.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.48.1.s390x",
"product": {
"name": "grub2-2.02-19.48.1.s390x",
"product_id": "grub2-2.02-19.48.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.48.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-19.48.1.s390x",
"product_id": "grub2-branding-upstream-2.02-19.48.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-19.48.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-19.48.1.s390x",
"product_id": "grub2-s390x-emu-2.02-19.48.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.48.1.x86_64",
"product": {
"name": "grub2-2.02-19.48.1.x86_64",
"product_id": "grub2-2.02-19.48.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.48.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-19.48.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-19.48.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-19.48.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-19.48.1.x86_64",
"product_id": "grub2-i386-pc-2.02-19.48.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-19.48.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-19.48.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-19.48.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-19.48.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02-19.48.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02-19.48.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64"
},
"product_reference": "grub2-2.02-19.48.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-19.48.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-19.48.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64"
},
"product_reference": "grub2-2.02-19.48.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-19.48.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-19.48.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64"
},
"product_reference": "grub2-2.02-19.48.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le"
},
"product_reference": "grub2-2.02-19.48.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x"
},
"product_reference": "grub2-2.02-19.48.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-19.48.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-19.48.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-19.48.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-19.48.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le"
},
"product_reference": "grub2-2.02-19.48.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.48.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.48.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.48.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.48.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.48.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.48.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.48.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.48.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T16:59:34Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
suse-su-2020:14440-1
Vulnerability from csaf_suse
Published
2020-07-29 17:00
Modified
2020-07-29 17:00
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Fix packed-not-aligned error on GCC 8 (bsc#1084632)
Patchnames
slessp4-grub2-14440
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n\n- Fix packed-not-aligned error on GCC 8 (bsc#1084632)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp4-grub2-14440",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_14440-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:14440-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-202014440-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:14440-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007201.html"
},
{
"category": "self",
"summary": "SUSE Bug 1084632",
"url": "https://bugzilla.suse.com/1084632"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-07-29T17:00:01Z",
"generator": {
"date": "2020-07-29T17:00:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:14440-1",
"initial_release_date": "2020-07-29T17:00:01Z",
"revision_history": [
{
"date": "2020-07-29T17:00:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"product_id": "grub2-x86_64-efi-2.00-0.66.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.00-0.66.15.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.00-0.66.15.1.x86_64",
"product_id": "grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.00-0.66.15.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.00-0.66.15.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.00-0.66.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.00-0.66.15.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.00-0.66.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-07-29T17:00:01Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
opensuse-su-2024:10824-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
grub2-2.06-7.1 on GA media
Notes
Title of the patch
grub2-2.06-7.1 on GA media
Description of the patch
These are all security issues fixed in the grub2-2.06-7.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10824
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "grub2-2.06-7.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the grub2-2.06-7.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10824",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10824-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15705 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "grub2-2.06-7.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10824-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.aarch64",
"product": {
"name": "grub2-2.06-7.1.aarch64",
"product_id": "grub2-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.aarch64",
"product_id": "grub2-branding-upstream-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.aarch64",
"product": {
"name": "grub2-i386-pc-2.06-7.1.aarch64",
"product_id": "grub2-i386-pc-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.aarch64",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.aarch64",
"product_id": "grub2-i386-pc-debug-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.aarch64",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.aarch64",
"product_id": "grub2-snapper-plugin-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.aarch64",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.aarch64",
"product_id": "grub2-x86_64-efi-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.aarch64",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.aarch64",
"product_id": "grub2-x86_64-xen-2.06-7.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.ppc64le",
"product": {
"name": "grub2-2.06-7.1.ppc64le",
"product_id": "grub2-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.ppc64le",
"product_id": "grub2-branding-upstream-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.ppc64le",
"product": {
"name": "grub2-i386-pc-2.06-7.1.ppc64le",
"product_id": "grub2-i386-pc-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.ppc64le",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.ppc64le",
"product_id": "grub2-i386-pc-debug-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.ppc64le",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.ppc64le",
"product_id": "grub2-snapper-plugin-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.ppc64le",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.ppc64le",
"product_id": "grub2-x86_64-efi-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.ppc64le",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.ppc64le",
"product_id": "grub2-x86_64-xen-2.06-7.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.s390x",
"product": {
"name": "grub2-2.06-7.1.s390x",
"product_id": "grub2-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.s390x",
"product_id": "grub2-branding-upstream-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.s390x",
"product": {
"name": "grub2-i386-pc-2.06-7.1.s390x",
"product_id": "grub2-i386-pc-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.s390x",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.s390x",
"product_id": "grub2-i386-pc-debug-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.s390x",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.s390x",
"product_id": "grub2-snapper-plugin-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.s390x",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.s390x",
"product_id": "grub2-x86_64-efi-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.s390x",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.s390x",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.s390x",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.s390x",
"product_id": "grub2-x86_64-xen-2.06-7.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.x86_64",
"product": {
"name": "grub2-2.06-7.1.x86_64",
"product_id": "grub2-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.x86_64",
"product_id": "grub2-branding-upstream-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.06-7.1.x86_64",
"product_id": "grub2-i386-pc-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.x86_64",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.x86_64",
"product_id": "grub2-i386-pc-debug-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.x86_64",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.x86_64",
"product_id": "grub2-snapper-plugin-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.x86_64",
"product_id": "grub2-x86_64-efi-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.x86_64",
"product_id": "grub2-x86_64-xen-2.06-7.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64"
},
"product_reference": "grub2-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le"
},
"product_reference": "grub2-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.s390x"
},
"product_reference": "grub2-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64"
},
"product_reference": "grub2-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64"
},
"product_reference": "grub2-i386-pc-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le"
},
"product_reference": "grub2-i386-pc-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x"
},
"product_reference": "grub2-i386-pc-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-15705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15705"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15705",
"url": "https://www.suse.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "SUSE Bug 1174421 for CVE-2020-15705",
"url": "https://bugzilla.suse.com/1174421"
},
{
"category": "external",
"summary": "SUSE Bug 1182890 for CVE-2020-15705",
"url": "https://bugzilla.suse.com/1182890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-15705"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
opensuse-su-2020:1169-1
Vulnerability from csaf_opensuse
Published
2020-08-08 12:16
Modified
2020-08-08 12:16
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- Fix for CVE-2020-10713 (bsc#1168994)
- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812)
- Fix for CVE-2020-15706 (bsc#1174463)
- Fix for CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
- Use grub_calloc for overflow check and return NULL when it would occur
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patchnames
openSUSE-2020-1169
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- Fix for CVE-2020-10713 (bsc#1168994)\n- Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812)\n- Fix for CVE-2020-15706 (bsc#1174463)\n- Fix for CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n- Use grub_calloc for overflow check and return NULL when it would occur \n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-1169",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1169-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:1169-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5QFTCOW4BTAH2DDIZ2VU3J4FEJWO4JOO/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:1169-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5QFTCOW4BTAH2DDIZ2VU3J4FEJWO4JOO/"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-08-08T12:16:27Z",
"generator": {
"date": "2020-08-08T12:16:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:1169-1",
"initial_release_date": "2020-08-08T12:16:27Z",
"revision_history": [
{
"date": "2020-08-08T12:16:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-lp152.7.3.4.i586",
"product": {
"name": "grub2-2.04-lp152.7.3.4.i586",
"product_id": "grub2-2.04-lp152.7.3.4.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"product": {
"name": "grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"product_id": "grub2-branding-upstream-2.04-lp152.7.3.4.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-i386-efi-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-i386-pc-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-i386-xen-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-snapper-plugin-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-x86_64-efi-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.04-lp152.7.3.4.noarch",
"product": {
"name": "grub2-x86_64-xen-2.04-lp152.7.3.4.noarch",
"product_id": "grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-lp152.7.3.4.x86_64",
"product": {
"name": "grub2-2.04-lp152.7.3.4.x86_64",
"product_id": "grub2-2.04-lp152.7.3.4.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"product": {
"name": "grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"product_id": "grub2-branding-upstream-2.04-lp152.7.3.4.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-lp152.7.3.4.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586"
},
"product_reference": "grub2-2.04-lp152.7.3.4.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-lp152.7.3.4.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64"
},
"product_reference": "grub2-2.04-lp152.7.3.4.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.04-lp152.7.3.4.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586"
},
"product_reference": "grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.04-lp152.7.3.4.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64"
},
"product_reference": "grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-efi-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-xen-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.04-lp152.7.3.4.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
},
"product_reference": "grub2-x86_64-xen-2.04-lp152.7.3.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.3.4.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.3.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:27Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
opensuse-su-2020:1168-1
Vulnerability from csaf_opensuse
Published
2020-08-08 12:16
Modified
2020-08-08 12:16
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
- CVE-2020-10713 (bsc#1168994)
- CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
(bsc#1173812)
- CVE-2020-15706 (bsc#1174463)
- CVE-2020-15707 (bsc#1174570)
- Use overflow checking primitives where the arithmetic expression for buffer
allocations may include unvalidated data
- Use grub_calloc for overflow check and return NULL when it would occur
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Patchnames
openSUSE-2020-1168
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\n- CVE-2020-10713 (bsc#1168994)\n- CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311\n (bsc#1173812)\n- CVE-2020-15706 (bsc#1174463)\n- CVE-2020-15707 (bsc#1174570)\n\n- Use overflow checking primitives where the arithmetic expression for buffer\n allocations may include unvalidated data\n- Use grub_calloc for overflow check and return NULL when it would occur \n\nThis update was imported from the SUSE:SLE-15-SP1:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-1168",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1168-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:1168-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YF63ZYYQU7ZYKF6P6J247AYPUGDO5WQT/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:1168-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YF63ZYYQU7ZYKF6P6J247AYPUGDO5WQT/"
},
{
"category": "self",
"summary": "SUSE Bug 1168994",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "self",
"summary": "SUSE Bug 1173812",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "self",
"summary": "SUSE Bug 1174463",
"url": "https://bugzilla.suse.com/1174463"
},
{
"category": "self",
"summary": "SUSE Bug 1174570",
"url": "https://bugzilla.suse.com/1174570"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14309 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14310 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14311 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2020-08-08T12:16:19Z",
"generator": {
"date": "2020-08-08T12:16:19Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:1168-1",
"initial_release_date": "2020-08-08T12:16:19Z",
"revision_history": [
{
"date": "2020-08-08T12:16:19Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-lp151.21.21.4.i586",
"product": {
"name": "grub2-2.02-lp151.21.21.4.i586",
"product_id": "grub2-2.02-lp151.21.21.4.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"product": {
"name": "grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"product_id": "grub2-branding-upstream-2.02-lp151.21.21.4.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-i386-efi-2.02-lp151.21.21.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-i386-pc-2.02-lp151.21.21.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-i386-xen-2.02-lp151.21.21.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-snapper-plugin-2.02-lp151.21.21.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-x86_64-efi-2.02-lp151.21.21.4.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-lp151.21.21.4.noarch",
"product": {
"name": "grub2-x86_64-xen-2.02-lp151.21.21.4.noarch",
"product_id": "grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-lp151.21.21.4.x86_64",
"product": {
"name": "grub2-2.02-lp151.21.21.4.x86_64",
"product_id": "grub2-2.02-lp151.21.21.4.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"product_id": "grub2-branding-upstream-2.02-lp151.21.21.4.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-lp151.21.21.4.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586"
},
"product_reference": "grub2-2.02-lp151.21.21.4.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-lp151.21.21.4.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64"
},
"product_reference": "grub2-2.02-lp151.21.21.4.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.02-lp151.21.21.4.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586"
},
"product_reference": "grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.02-lp151.21.21.4.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64"
},
"product_reference": "grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-efi-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-xen-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-lp151.21.21.4.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-lp151.21.21.4.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14309"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14309",
"url": "https://www.suse.com/security/cve/CVE-2020-14309"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14309",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "moderate"
}
],
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14310"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14310",
"url": "https://www.suse.com/security/cve/CVE-2020-14310"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14310",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "moderate"
}
],
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14311"
}
],
"notes": [
{
"category": "general",
"text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14311",
"url": "https://www.suse.com/security/cve/CVE-2020-14311"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14311",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "moderate"
}
],
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.i586",
"openSUSE Leap 15.1:grub2-branding-upstream-2.02-lp151.21.21.4.x86_64",
"openSUSE Leap 15.1:grub2-i386-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-pc-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-i386-xen-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-snapper-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-systemd-sleep-plugin-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-efi-2.02-lp151.21.21.4.noarch",
"openSUSE Leap 15.1:grub2-x86_64-xen-2.02-lp151.21.21.4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-08-08T12:16:19Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
}
]
}
ghsa-m2fm-gm84-v5jq
Vulnerability from github
Published
2022-05-24 17:24
Modified
2022-11-16 12:00
Severity ?
VLAI Severity ?
Details
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
{
"affected": [],
"aliases": [
"CVE-2020-10713"
],
"database_specific": {
"cwe_ids": [
"CWE-120"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-07-30T13:15:00Z",
"severity": "MODERATE"
},
"details": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GHSA-m2fm-gm84-v5jq",
"modified": "2022-11-16T12:00:19Z",
"published": "2022-05-24T17:24:42Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10713"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"type": "WEB",
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"type": "WEB",
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot"
},
{
"type": "WEB",
"url": "https://kb.vmware.com/s/article/80181"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20200731-0008"
},
{
"type": "WEB",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/4432-1"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"type": "WEB",
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
fkie_cve-2020-10713
Vulnerability from fkie_nvd
Published
2020-07-30 13:15
Modified
2024-11-21 04:55
Severity ?
Summary
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://www.openwall.com/lists/oss-security/2020/07/29/3 | Mailing List, Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=1825243 | Issue Tracking, Third Party Advisory | |
| secalert@redhat.com | https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713 | Broken Link | |
| secalert@redhat.com | https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/ | Technical Description, Third Party Advisory | |
| secalert@redhat.com | https://kb.vmware.com/s/article/80181 | Third Party Advisory | |
| secalert@redhat.com | https://security.gentoo.org/glsa/202104-05 | Third Party Advisory | |
| secalert@redhat.com | https://security.netapp.com/advisory/ntap-20200731-0008/ | Third Party Advisory | |
| secalert@redhat.com | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY | Third Party Advisory | |
| secalert@redhat.com | https://usn.ubuntu.com/4432-1/ | Third Party Advisory | |
| secalert@redhat.com | https://www.debian.org/security/2020/dsa-4735 | Third Party Advisory | |
| secalert@redhat.com | https://www.kb.cert.org/vuls/id/174059 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2020/07/29/3 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1825243 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/ | Technical Description, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kb.vmware.com/s/article/80181 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/202104-05 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20200731-0008/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/4432-1/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2020/dsa-4735 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.kb.cert.org/vuls/id/174059 | Third Party Advisory, US Government Resource |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "01F8D62F-70BB-4718-A095-D68540C17EEA",
"versionEndExcluding": "2.06",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B009C22E-30A4-4288-BCF6-C3E81DEAF45A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:vmware:photon_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "742D1040-10F3-4680-86FE-5588B69ECF98",
"versionEndExcluding": "2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
},
{
"lang": "es",
"value": "Se encontr\u00f3 un fallo en grub2, versiones anteriores a 2.06. Un atacante puede usar el fallo de GRUB 2 para secuestrar y manipular el proceso de verificaci\u00f3n de GRUB. Este fallo tambi\u00e9n permite omitir las protecciones de Secure Boot. A fin de cargar un kernel no confiable o modificado, un atacante primero necesitar\u00eda establecer acceso al sistema, tal y como conseguir acceso f\u00edsico, obtener la capacidad de alterar una red pxe-boot o tener acceso remoto a un sistema de red con acceso root. Con este acceso, un atacante podr\u00eda dise\u00f1ar una cadena para causar un desbordamiento del b\u00fafer al inyectar una carga \u00fatil maliciosa que conlleve a una ejecuci\u00f3n de c\u00f3digo arbitraria dentro de GRUB. La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema"
}
],
"id": "CVE-2020-10713",
"lastModified": "2024-11-21T04:55:54.533",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.5,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-07-30T13:15:10.940",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"source": "secalert@redhat.com",
"tags": [
"Technical Description",
"Third Party Advisory"
],
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://kb.vmware.com/s/article/80181"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Technical Description",
"Third Party Advisory"
],
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://kb.vmware.com/s/article/80181"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.kb.cert.org/vuls/id/174059"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-120"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
cisco-sa-grub2-code-exec-xlepcapy
Vulnerability from csaf_cisco
Published
2020-08-04 23:00
Modified
2020-08-10 15:49
Summary
GRUB2 Arbitrary Code Execution Vulnerability
Notes
Summary
On July 29, 2020, a research paper titled “There’s a Hole in the Boot” was made publicly available. This paper discusses a vulnerability discovered in the GRand Unified Bootloader version 2 (GRUB2) bootloader that may allow an attacker to execute arbitrary code at system boot time.
The vulnerability is due to incorrect bounds checking of certain values parsed from the GRUB2 configuration file. An attacker could exploit this vulnerability by supplying a crafted configuration file for GRUB2. When this file is processed, an exploitable buffer overflow condition may occur. A successful exploit could allow the attacker to inject arbitrary code that is executed before the operating system is loaded on the targeted system.
On systems protected by the Unified Extensible Firmware Interface (UEFI) secure boot feature, exploitation of this vulnerability may allow the attacker to tamper with the secure boot process.
Multiple Cisco products are affected by this vulnerability.
Cisco will release software updates that address this vulnerability. Any workarounds for a specific Cisco product or service will be documented in the relevant Cisco bugs, which are identified in the Vulnerable Products ["#vp"] section of this advisory.
This advisory will be updated as additional information becomes available.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"]
Affected Products
The following table lists Cisco products that are affected by the vulnerability that is described in this advisory.
The Vulnerable Products ["#vp"] section includes Cisco bug IDs for each affected product or service. The bugs are accessible through the Cisco Bug Search Tool ["https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID"] and contain additional platform-specific information, including workarounds (if available) and fixed software releases.
Any product or service not listed in the Products Under Investigation ["#pui"] or Vulnerable Products ["#vp"] section of this advisory is to be considered not vulnerable. Because this is an ongoing investigation, please be aware that products and services that are currently considered not vulnerable may subsequently be considered vulnerable as additional information becomes available.
Vulnerable Products
This vulnerability affects Cisco Products if they implement a vulnerable release of the GRUB2 bootloader and do not validate the GRUB2 configuration file.
The following table lists Cisco products that are affected by the vulnerability that is described in this advisory. If a future release date is indicated for software, the date provided represents an estimate based on all information known to Cisco as of the Last Updated date at the top of the advisory. Availability dates are subject to change based on a number of factors, including satisfactory testing results and delivery of other priority features and fixes. If no version or date is listed for an affected component (indicated by a blank field and/or an advisory designation of Interim), Cisco is continuing to evaluate the fix and will update the advisory as additional information becomes available. After the advisory is marked Final, customers should refer to the associated Cisco bug(s) for further details.
Product Cisco Bug ID Fixed Release Availability ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"] Routing and Switching - Enterprise and Service Provider Cisco Cloud Services Router 1000V Series CSCvv04959 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04959"] Cisco Integrated Services Virtual Router (ISRv) CSCvv04959 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04959"] Network and Content Security Devices Cisco Identity Services Engine (ISE) CSCvv04957 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04957"] Unified Computing Cisco Enterprise NFV Infrastructure Software (NFVIS) CSCvv05161 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv05161"]
Products Confirmed Not Vulnerable
Only products and services listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by this vulnerability.
Cisco has confirmed that this vulnerability does not affect the following products and services.
Network and Content Security Devices
Cisco Firepower Management System
Routing and Switching - Enterprise and Service Provider
Cisco 1000 Series Connected Grid Routers
Cisco IR800 Series Integrated Services Routers (ISRs)
Details
This vulnerability affects Cisco devices that integrate a vulnerable release of the GRUB2 bootloader. The bootloader is software that is executed during the system startup process; it is initialized by the system firmware and performs the necessary initialization for loading the operating system. GRUB2 reads its configuration parameters from a text file. An affected version of GRUB2 improperly performs the bounds checking of specific values parsed from the configuration file.
An attacker who can modify this configuration file (by possessing either administrative privileges to the device or physical access to the targeted system) could exploit this vulnerability by supplying a crafted configuration file for GRUB2. When this file is processed, a heap-based buffer overflow may occur. The attacker could use this vulnerability to achieve arbitrary code execution in the preboot environment of an affected system.
Exploitation of this vulnerability would require an attacker to modify the GRUB2 configuration file. Most Cisco devices validate the GRUB2 configuration file during the boot process. An attempt to exploit this vulnerability will cause the digital signature check to fail. When this check fails, the Cisco device will not let that software boot, thereby preventing the malicious code from running.
On a subset of Cisco devices, the GRUB2 configuration file is not validated. These products are affected by the vulnerability described in this advisory, and listed in Vulnerable Products ["#vp"] section.
Workarounds
Any workarounds for a specific Cisco product or service will be documented in the relevant Cisco bugs, which are identified in the Vulnerable Products ["#vp"] section of this advisory.
Fixed Software
For information about fixed software releases ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], consult the Cisco bugs identified in the Vulnerable Products ["#vp"] section of this advisory.
When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Vulnerability Policy
To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements
The Cisco Product Security Incident Response Team (PSIRT) is aware that proof-of-concept exploit code is available for the vulnerability described in this advisory.
The Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory.
Source
Cisco would like to thank Mickey Shkatov and Jesse Michael of Eclypsium for reporting this vulnerability.
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. CISCO EXPECTS TO UPDATE THIS DOCUMENT AS NEW INFORMATION BECOMES AVAILABLE.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
{
"document": {
"acknowledgments": [
{
"summary": "Cisco would like to thank Mickey Shkatov and Jesse Michael of Eclypsium for reporting this vulnerability."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "On July 29, 2020, a research paper titled \u201cThere\u2019s a Hole in the Boot\u201d was made publicly available. This paper discusses a vulnerability discovered in the GRand Unified Bootloader version 2 (GRUB2) bootloader that may allow an attacker to execute arbitrary code at system boot time.\r\n\r\nThe vulnerability is due to incorrect bounds checking of certain values parsed from the GRUB2 configuration file. An attacker could exploit this vulnerability by supplying a crafted configuration file for GRUB2. When this file is processed, an exploitable buffer overflow condition may occur. A successful exploit could allow the attacker to inject arbitrary code that is executed before the operating system is loaded on the targeted system.\r\n\r\nOn systems protected by the Unified Extensible Firmware Interface (UEFI) secure boot feature, exploitation of this vulnerability may allow the attacker to tamper with the secure boot process.\r\n\r\nMultiple Cisco products are affected by this vulnerability.\r\n\r\nCisco will release software updates that address this vulnerability. Any workarounds for a specific Cisco product or service will be documented in the relevant Cisco bugs, which are identified in the Vulnerable Products [\"#vp\"] section of this advisory.\r\n\r\nThis advisory will be updated as additional information becomes available.\r\n\r\nThis advisory is available at the following link:\r\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY [\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY\"]",
"title": "Summary"
},
{
"category": "general",
"text": "The following table lists Cisco products that are affected by the vulnerability that is described in this advisory.\r\n\r\nThe Vulnerable Products [\"#vp\"] section includes Cisco bug IDs for each affected product or service. The bugs are accessible through the Cisco Bug Search Tool [\"https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID\"] and contain additional platform-specific information, including workarounds (if available) and fixed software releases.\r\n\r\nAny product or service not listed in the Products Under Investigation [\"#pui\"] or Vulnerable Products [\"#vp\"] section of this advisory is to be considered not vulnerable. Because this is an ongoing investigation, please be aware that products and services that are currently considered not vulnerable may subsequently be considered vulnerable as additional information becomes available.",
"title": "Affected Products"
},
{
"category": "general",
"text": "This vulnerability affects Cisco Products if they implement a vulnerable release of the GRUB2 bootloader and do not validate the GRUB2 configuration file.\r\n\r\nThe following table lists Cisco products that are affected by the vulnerability that is described in this advisory. If a future release date is indicated for software, the date provided represents an estimate based on all information known to Cisco as of the Last Updated date at the top of the advisory. Availability dates are subject to change based on a number of factors, including satisfactory testing results and delivery of other priority features and fixes. If no version or date is listed for an affected component (indicated by a blank field and/or an advisory designation of Interim), Cisco is continuing to evaluate the fix and will update the advisory as additional information becomes available. After the advisory is marked Final, customers should refer to the associated Cisco bug(s) for further details.\r\n Product Cisco Bug ID Fixed Release Availability [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"] Routing and Switching - Enterprise and Service Provider Cisco Cloud Services Router 1000V Series CSCvv04959 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04959\"] Cisco Integrated Services Virtual Router (ISRv) CSCvv04959 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04959\"] Network and Content Security Devices Cisco Identity Services Engine (ISE) CSCvv04957 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04957\"] Unified Computing Cisco Enterprise NFV Infrastructure Software (NFVIS) CSCvv05161 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv05161\"]",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products and services listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following products and services.\r\n\r\nNetwork and Content Security Devices\r\n\r\nCisco Firepower Management System\r\n\r\nRouting and Switching - Enterprise and Service Provider\r\n\r\nCisco 1000 Series Connected Grid Routers\r\nCisco IR800 Series Integrated Services Routers (ISRs)",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "This vulnerability affects Cisco devices that integrate a vulnerable release of the GRUB2 bootloader. The bootloader is software that is executed during the system startup process; it is initialized by the system firmware and performs the necessary initialization for loading the operating system. GRUB2 reads its configuration parameters from a text file. An affected version of GRUB2 improperly performs the bounds checking of specific values parsed from the configuration file.\r\n\r\nAn attacker who can modify this configuration file (by possessing either administrative privileges to the device or physical access to the targeted system) could exploit this vulnerability by supplying a crafted configuration file for GRUB2. When this file is processed, a heap-based buffer overflow may occur. The attacker could use this vulnerability to achieve arbitrary code execution in the preboot environment of an affected system.\r\n\r\nExploitation of this vulnerability would require an attacker to modify the GRUB2 configuration file. Most Cisco devices validate the GRUB2 configuration file during the boot process. An attempt to exploit this vulnerability will cause the digital signature check to fail. When this check fails, the Cisco device will not let that software boot, thereby preventing the malicious code from running.\r\n\r\nOn a subset of Cisco devices, the GRUB2 configuration file is not validated. These products are affected by the vulnerability described in this advisory, and listed in Vulnerable Products [\"#vp\"] section.",
"title": "Details"
},
{
"category": "general",
"text": "Any workarounds for a specific Cisco product or service will be documented in the relevant Cisco bugs, which are identified in the Vulnerable Products [\"#vp\"] section of this advisory.",
"title": "Workarounds"
},
{
"category": "general",
"text": "For information about fixed software releases [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], consult the Cisco bugs identified in the Vulnerable Products [\"#vp\"] section of this advisory.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco Product Security Incident Response Team (PSIRT) is aware that proof-of-concept exploit code is available for the vulnerability described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "Cisco would like to thank Mickey Shkatov and Jesse Michael of Eclypsium for reporting this vulnerability.",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. CISCO EXPECTS TO UPDATE THIS DOCUMENT AS NEW INFORMATION BECOMES AVAILABLE.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "Emergency Support:\r\n+1 877 228 7302 (toll-free within North America)\r\n+1 408 525 6532 (International direct-dial)\r\nNon-emergency Support:\r\nEmail: psirt@cisco.com\r\nSupport requests that are received via e-mail are typically acknowledged within 48 hours.",
"issuing_authority": "Cisco product security incident response is the responsibility of the Cisco Product Security Incident Response Team (PSIRT). The Cisco PSIRT is a dedicated, global team that manages the receipt, investigation, and public reporting of security vulnerability information that is related to Cisco products and networks. The on-call Cisco PSIRT works 24x7 with Cisco customers, independent security researchers, consultants, industry organizations, and other vendors to identify possible security issues with Cisco products and networks.\r\nMore information can be found in Cisco Security Vulnerability Policy available at https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "GRUB2 Arbitrary Code Execution Vulnerability",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"category": "external",
"summary": "Cisco Bug Search Tool",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID"
},
{
"category": "external",
"summary": "Fixed Release Availability",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "CSCvv04959",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04959"
},
{
"category": "external",
"summary": "CSCvv04959",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04959"
},
{
"category": "external",
"summary": "CSCvv04957",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv04957"
},
{
"category": "external",
"summary": "CSCvv05161",
"url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv05161"
},
{
"category": "external",
"summary": "fixed software releases",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "considering software upgrades",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "Cisco Security Advisories page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
}
],
"title": "GRUB2 Arbitrary Code Execution Vulnerability",
"tracking": {
"current_release_date": "2020-08-10T15:49:28+00:00",
"generator": {
"date": "2022-10-22T03:05:33+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-grub2-code-exec-xLePCAPY",
"initial_release_date": "2020-08-04T23:00:00+00:00",
"revision_history": [
{
"date": "2020-08-04T22:36:49+00:00",
"number": "1.0.0",
"summary": "Initial public release."
},
{
"date": "2020-08-10T15:49:28+00:00",
"number": "1.1.0",
"summary": "Updated the summary and moved the product under investigation to the list of vulnerable products."
}
],
"status": "interim",
"version": "1.1.0"
}
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"notes": [
{
"category": "general",
"text": "No additional information for this vulneraiblity is currently avaialbe.",
"title": "No Notes"
}
],
"release_date": "2020-08-04T23:00:00+00:00",
"remediations": [
{
"category": "none_available",
"details": "No remediation is available at this time."
}
],
"title": "Grub2 Arbitrary Code Execution Vulnerbility"
}
]
}
wid-sec-w-2022-0553
Vulnerability from csaf_certbund
Published
2020-07-29 22:00
Modified
2025-04-09 22:00
Summary
Grub2: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Grand Unified Bootloader (Grub) ist ein freies Bootloader-Programm des GNU Projekts.
Windows ist ein Betriebssystem von Microsoft.
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
SUSE Linux ist eine Linux-Distribution bzw. Open Source Plattform.
Ubuntu Linux ist die Linux Distribution des Herstellers Canonical.
Debian ist eine Linux-Distribution, die ausschließlich Freie Software enthält.
Angriff
Ein lokaler Angreifer mit Administratorrechten oder physischem Zugriff auf das Gerät, kann mehrere Schwachstellen in Grub2 ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Grand Unified Bootloader (Grub) ist ein freies Bootloader-Programm des GNU Projekts.\r\nWindows ist ein Betriebssystem von Microsoft.\r\nRed Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.\r\nSUSE Linux ist eine Linux-Distribution bzw. Open Source Plattform.\r\nUbuntu Linux ist die Linux Distribution des Herstellers Canonical.\r\nDebian ist eine Linux-Distribution, die ausschlie\u00dflich Freie Software enth\u00e4lt.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer mit Administratorrechten oder physischem Zugriff auf das Ger\u00e4t, kann mehrere Schwachstellen in Grub2 ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0553 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2020/wid-sec-w-2022-0553.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0553 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0553"
},
{
"category": "external",
"summary": "Microsoft Security Advisory vom 2020-07-29",
"url": "https://portal.msrc.microsoft.com/de-DE/security-guidance/advisory/ADV200011"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2020:3216"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2020:3217"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2020:3227"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2020:3223"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007195.html"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007196.html"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007197.html"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007198.html"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007199.html"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007200.html"
},
{
"category": "external",
"summary": "SuSE Security Advisory",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-July/007201.html"
},
{
"category": "external",
"summary": "Ubuntu Security Advisory",
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"category": "external",
"summary": "Debian Security Advisory",
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"category": "external",
"summary": "Huawei Security Advisory HUAWEI-SA-20200716-01-DNS vom 2020-07-30",
"url": "https://www.huawei.com/en/psirt/security-notices/huawei-sn-20200730-01-grub2-en"
},
{
"category": "external",
"summary": "HPE Security Bulletin",
"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbhf04019en_us"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:3273 vom 2020-08-03",
"url": "https://access.redhat.com/errata/RHSA-2020:3273"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:3275 vom 2020-08-03",
"url": "https://access.redhat.com/errata/RHSA-2020:3275"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:3276 vom 2020-08-03",
"url": "https://access.redhat.com/errata/RHSA-2020:3276"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:3274 vom 2020-08-03",
"url": "https://access.redhat.com/errata/RHSA-2020:3274"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:3271 vom 2020-08-03",
"url": "https://access.redhat.com/errata/RHSA-2020:3271"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-4432-2 vom 2020-08-05",
"url": "https://ubuntu.com/security/notices/USN-4432-2"
},
{
"category": "external",
"summary": "Cisco Security Advisory CISCO-SA-GRUB2-CODE-EXEC-XLEPCAPY vom 2020-08-04",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"category": "external",
"summary": "Palo Alto Networks Security Advisory PAN-SA-2020-0008 vom 2020-08-12",
"url": "https://security.paloaltonetworks.com/PAN-SA-2020-0008"
},
{
"category": "external",
"summary": "AVAYA Security Advisory ASA-2020-102 vom 2020-08-14",
"url": "https://downloads.avaya.com/css/P8/documents/101070227"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:14461-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007297.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2304-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007290.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2308-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007292.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2307-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007293.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2303-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007294.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2306-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007295.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2305-1 vom 2020-08-25",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-August/007298.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2629-1 vom 2020-09-14",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-September/007421.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2626-1 vom 2020-09-14",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-September/007423.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2627-1 vom 2020-09-14",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-September/007424.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:2628-1 vom 2020-09-14",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-September/007422.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:14490-1 vom 2020-09-15",
"url": "http://lists.suse.com/pipermail/sle-security-updates/2020-September/007428.html"
},
{
"category": "external",
"summary": "HP CUSTOMER BULLETIN",
"url": "https://support.hpe.com/hpesc/public/docDisplay?cc=de\u0026docId=emr_na-a00105191de_de\u0026lang=de"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:4115 vom 2020-09-30",
"url": "https://access.redhat.com/errata/RHSA-2020:4115"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:4172 vom 2020-10-05",
"url": "https://access.redhat.com/errata/RHSA-2020:4172"
},
{
"category": "external",
"summary": "Aruba Product Security Advisory",
"url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-012.txt"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202104-05 vom 2021-05-01",
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2022-5095 vom 2022-07-04",
"url": "https://linux.oracle.com/errata/ELSA-2022-5095.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2022-9595 vom 2022-07-14",
"url": "http://linux.oracle.com/errata/ELSA-2022-9595.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-0049 vom 2023-01-25",
"url": "http://linux.oracle.com/errata/ELSA-2023-0049.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7087688 vom 2023-12-04",
"url": "https://www.ibm.com/support/pages/node/7087688"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-3184 vom 2024-05-28",
"url": "https://linux.oracle.com/errata/ELSA-2024-3184.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-3367 vom 2025-04-10",
"url": "https://linux.oracle.com/errata/ELSA-2025-3367.html"
}
],
"source_lang": "en-US",
"title": "Grub2: Mehrere Schwachstellen erm\u00f6glichen Umgehen von Sicherheitsvorkehrungen",
"tracking": {
"current_release_date": "2025-04-09T22:00:00.000+00:00",
"generator": {
"date": "2025-04-10T08:25:47.124+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2022-0553",
"initial_release_date": "2020-07-29T22:00:00.000+00:00",
"revision_history": [
{
"date": "2020-07-29T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2020-07-30T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Huawei aufgenommen"
},
{
"date": "2020-08-02T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von HP und Red Hat aufgenommen"
},
{
"date": "2020-08-03T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2020-08-04T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2020-08-05T22:00:00.000+00:00",
"number": "6",
"summary": "Produktversion angepasst"
},
{
"date": "2020-08-12T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Palo Alto Networks aufgenommen"
},
{
"date": "2020-08-13T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von AVAYA aufgenommen"
},
{
"date": "2020-08-25T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2020-09-14T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2020-09-15T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2020-09-20T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von HP aufgenommen"
},
{
"date": "2020-09-29T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2020-10-05T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2020-12-08T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Aruba aufgenommen"
},
{
"date": "2021-04-20T22:00:00.000+00:00",
"number": "16",
"summary": "Referenz \"BootHole\" aufgenommen"
},
{
"date": "2021-05-02T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Gentoo aufgenommen"
},
{
"date": "2022-07-04T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2022-07-14T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2023-01-25T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2023-12-04T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-05-28T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-04-09T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Oracle Linux aufgenommen"
}
],
"status": "final",
"version": "23"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Aruba ArubaOS",
"product": {
"name": "Aruba ArubaOS",
"product_id": "T016785",
"product_identification_helper": {
"cpe": "cpe:/o:arubanetworks:arubaos:-"
}
}
}
],
"category": "vendor",
"name": "Aruba"
},
{
"branches": [
{
"category": "product_name",
"name": "Avaya Aura Application Enablement Services",
"product": {
"name": "Avaya Aura Application Enablement Services",
"product_id": "T015516",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_application_enablement_services:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Communication Manager",
"product": {
"name": "Avaya Aura Communication Manager",
"product_id": "T015126",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:communication_manager:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura Session Manager",
"product": {
"name": "Avaya Aura Session Manager",
"product_id": "T015127",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:session_manager:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Aura System Manager",
"product": {
"name": "Avaya Aura System Manager",
"product_id": "T015518",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:aura_system_manager:-"
}
}
},
{
"category": "product_name",
"name": "Avaya Web License Manager",
"product": {
"name": "Avaya Web License Manager",
"product_id": "T016243",
"product_identification_helper": {
"cpe": "cpe:/a:avaya:web_license_manager:-"
}
}
}
],
"category": "vendor",
"name": "Avaya"
},
{
"branches": [
{
"category": "product_name",
"name": "Cisco Identity Services Engine (ISE)",
"product": {
"name": "Cisco Identity Services Engine (ISE)",
"product_id": "T000612",
"product_identification_helper": {
"cpe": "cpe:/a:cisco:identity_services_engine_software:-"
}
}
},
{
"category": "product_name",
"name": "Cisco Router",
"product": {
"name": "Cisco Router",
"product_id": "T003258",
"product_identification_helper": {
"cpe": "cpe:/h:cisco:router:-"
}
}
}
],
"category": "vendor",
"name": "Cisco"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE ProLiant",
"product": {
"name": "HPE ProLiant",
"product_id": "T009310",
"product_identification_helper": {
"cpe": "cpe:/h:hp:proliant:-"
}
}
}
],
"category": "vendor",
"name": "HPE"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "11.5",
"product": {
"name": "IBM Security Guardium 11.5",
"product_id": "1411051",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:security_guardium:11.5"
}
}
}
],
"category": "product_name",
"name": "Security Guardium"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Microsoft Windows",
"product": {
"name": "Microsoft Windows",
"product_id": "7107",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows:-"
}
}
}
],
"category": "vendor",
"name": "Microsoft"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source Grub",
"product": {
"name": "Open Source Grub",
"product_id": "267608",
"product_identification_helper": {
"cpe": "cpe:/a:gnu:grub:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "PaloAlto Networks PAN-OS",
"product": {
"name": "PaloAlto Networks PAN-OS",
"product_id": "T012790",
"product_identification_helper": {
"cpe": "cpe:/o:paloaltonetworks:pan-os:-"
}
}
}
],
"category": "vendor",
"name": "PaloAlto Networks"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "131442",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:10.04:-:lts"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-14309",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-14309"
},
{
"cve": "CVE-2020-14310",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-14310"
},
{
"cve": "CVE-2020-14311",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-14311"
},
{
"cve": "CVE-2020-15705",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-15705"
},
{
"cve": "CVE-2020-15706",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"product_status": {
"known_affected": [
"131442",
"T015518",
"67646",
"T015516",
"T003258",
"T015127",
"T015126",
"T012167",
"T004914",
"T016785",
"267608",
"T012790",
"T016243",
"2951",
"T000612",
"T002207",
"7107",
"T009310",
"1411051"
]
},
"release_date": "2020-07-29T22:00:00.000+00:00",
"title": "CVE-2020-15707"
}
]
}
gsd-2020-10713
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-10713",
"description": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GSD-2020-10713",
"references": [
"https://www.suse.com/security/cve/CVE-2020-10713.html",
"https://www.debian.org/security/2020/dsa-4735",
"https://access.redhat.com/errata/RHSA-2020:4172",
"https://access.redhat.com/errata/RHSA-2020:4115",
"https://access.redhat.com/errata/RHSA-2020:3276",
"https://access.redhat.com/errata/RHSA-2020:3275",
"https://access.redhat.com/errata/RHSA-2020:3274",
"https://access.redhat.com/errata/RHSA-2020:3273",
"https://access.redhat.com/errata/RHSA-2020:3271",
"https://access.redhat.com/errata/RHSA-2020:3227",
"https://access.redhat.com/errata/RHSA-2020:3223",
"https://access.redhat.com/errata/RHSA-2020:3217",
"https://access.redhat.com/errata/RHSA-2020:3216",
"https://ubuntu.com/security/CVE-2020-10713",
"https://advisories.mageia.org/CVE-2020-10713.html",
"https://linux.oracle.com/cve/CVE-2020-10713.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-10713"
],
"details": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GSD-2020-10713",
"modified": "2023-12-13T01:22:04.098611Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-10713",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Grub",
"version": {
"version_data": [
{
"version_value": "All grub2 versions before 2.06"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Out-of-bounds Write leading to Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4735",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"name": "[oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"name": "VU#174059",
"refsource": "CERT-VN",
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"name": "https://security.netapp.com/advisory/ntap-20200731-0008/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"name": "USN-4432-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"name": "20200804 GRUB2 Arbitrary Code Execution Vulnerability",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"name": "openSUSE-SU-2020:1169",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"name": "openSUSE-SU-2020:1168",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"name": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"refsource": "MISC",
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"name": "https://kb.vmware.com/s/article/80181",
"refsource": "MISC",
"url": "https://kb.vmware.com/s/article/80181"
},
{
"name": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713",
"refsource": "MISC",
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"name": "GLSA-202104-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202104-05"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.06",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:vmware:photon_os:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-10713"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-120"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825243"
},
{
"name": "VU#174059",
"refsource": "CERT-VN",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.kb.cert.org/vuls/id/174059"
},
{
"name": "https://security.netapp.com/advisory/ntap-20200731-0008/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20200731-0008/"
},
{
"name": "USN-4432-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4432-1/"
},
{
"name": "20200804 GRUB2 Arbitrary Code Execution Vulnerability",
"refsource": "CISCO",
"tags": [
"Third Party Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-grub2-code-exec-xLePCAPY"
},
{
"name": "openSUSE-SU-2020:1169",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html"
},
{
"name": "openSUSE-SU-2020:1168",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html"
},
{
"name": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/",
"refsource": "MISC",
"tags": [
"Technical Description",
"Third Party Advisory"
],
"url": "https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/"
},
{
"name": "[oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2020/07/29/3"
},
{
"name": "DSA-4735",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2020/dsa-4735"
},
{
"name": "https://kb.vmware.com/s/article/80181",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://kb.vmware.com/s/article/80181"
},
{
"name": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713",
"refsource": "MISC",
"tags": [
"Broken Link"
],
"url": "https://cve.openeuler.org/#/CVEInfo/CVE-2020-10713"
},
{
"name": "GLSA-202104-05",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202104-05"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.5,
"impactScore": 6.0
}
},
"lastModifiedDate": "2022-11-16T04:06Z",
"publishedDate": "2020-07-30T13:15Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…