Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-25632 (GCVE-0-2020-25632)
Vulnerability from cvelistv5
Published
2021-03-03 16:40
Modified
2024-08-04 15:40
Severity ?
VLAI Severity ?
EPSS score ?
CWE
Summary
A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
| ► | URL | Tags | |
|---|---|---|---|
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T15:40:35.453Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"name": "FEDORA-2021-cab258a413",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"name": "GLSA-202104-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "grub2",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "grub 2.06"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-03-25T07:06:25",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"name": "FEDORA-2021-cab258a413",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"name": "GLSA-202104-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-25632",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "grub2",
"version": {
"version_data": [
{
"version_value": "grub 2.06"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-416"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"name": "FEDORA-2021-cab258a413",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"name": "GLSA-202104-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220325-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2020-25632",
"datePublished": "2021-03-03T16:40:47",
"dateReserved": "2020-09-16T00:00:00",
"dateUpdated": "2024-08-04T15:40:35.453Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2020-25632\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2021-03-03T17:15:11.660\",\"lastModified\":\"2024-11-21T05:18:17.340\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en grub2 en versiones anteriores a 2.06.\u0026#xa0;La implementaci\u00f3n de rmmod permite la descarga de un m\u00f3dulo usado como dependencia sin comprobar si alg\u00fan otro m\u00f3dulo dependiente todav\u00eda est\u00e1 cargado, lo que conlleva a un escenario de uso de la memoria previamente liberada.\u0026#xa0;Esto podr\u00eda permitir una ejecuci\u00f3n de c\u00f3digo arbitraria o una omisi\u00f3n de las protecciones de Secure Boot.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.5,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.06\",\"matchCriteriaId\":\"01F8D62F-70BB-4718-A095-D68540C17EEA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C8D871B-AEA1-4407-AEE3-47EC782250FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98381E61-F082-4302-B51F-5648884F998B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D99A687E-EAE6-417E-A88E-D0082BC194CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B353CE99-D57C-465B-AAB0-73EF581127D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7431ABC1-9252-419E-8CC1-311B41360078\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6897676D-53F9-45B3-B27F-7FF9A4C58D33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21690BAC-2129-4A33-9B48-1F3BF30072A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2FF6D89-9361-45B9-ABCC-1A5E600BD63C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5F7E11E-FB34-4467-8919-2B6BEAABF665\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17F256A9-D3B9-4C72-B013-4EFD878BFEA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B09ACF2D-D83F-4A86-8185-9569605D8EE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7CF3019-975D-40BB-A8A4-894E62BD3797\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1879577\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.gentoo.org/glsa/202104-05\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220325-0001/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1879577\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202104-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220325-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
rhsa-2021:0704
Vulnerability from csaf_redhat
Published
2021-03-02 19:55
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0704",
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0704.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:45+00:00",
"generator": {
"date": "2024-12-22T19:11:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0704",
"initial_release_date": "2021-03-02T19:55:52+00:00",
"revision_history": [
{
"date": "2021-03-02T19:55:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T19:55:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.2::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.2::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_2.2.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_2.2.src",
"product_id": "grub2-1:2.02-0.86.el7_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.2.src",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.2.src",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:55:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0704"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src",
"7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch",
"7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64",
"7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:3675
Vulnerability from csaf_redhat
Published
2021-09-28 14:40
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: shim and fwupd security update
Notes
Topic
An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupd packages provide a service that allows session software to update device firmware.
The following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932410)
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932410)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:3675",
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3675.json"
}
],
"title": "Red Hat Security Advisory: shim and fwupd security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:54+00:00",
"generator": {
"date": "2024-12-22T19:11:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:3675",
"initial_release_date": "2021-09-28T14:40:21+00:00",
"revision_history": [
{
"date": "2021-09-28T14:40:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-09-28T14:40:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product": {
"name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.1::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-0:15.4-2.el8_1.src",
"product": {
"name": "shim-0:15.4-2.el8_1.src",
"product_id": "shim-0:15.4-2.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-4.el8_1.src",
"product": {
"name": "fwupd-0:1.1.4-4.el8_1.src",
"product_id": "fwupd-0:1.1.4-4.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product": {
"name": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product_id": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-4.el8_1.aarch64",
"product": {
"name": "fwupd-0:1.1.4-4.el8_1.aarch64",
"product_id": "fwupd-0:1.1.4-4.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product": {
"name": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product_id": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15.4-2.el8_1.x86_64",
"product": {
"name": "shim-x64-0:15.4-2.el8_1.x86_64",
"product_id": "shim-x64-0:15.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-4.el8_1.x86_64",
"product": {
"name": "fwupd-0:1.1.4-4.el8_1.x86_64",
"product_id": "fwupd-0:1.1.4-4.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-4.el8_1.ppc64le",
"product": {
"name": "fwupd-0:1.1.4-4.el8_1.ppc64le",
"product_id": "fwupd-0:1.1.4-4.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"product": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-4.el8_1.s390x",
"product": {
"name": "fwupd-0:1.1.4-4.el8_1.s390x",
"product_id": "fwupd-0:1.1.4-4.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"product": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64"
},
"product_reference": "fwupd-0:1.1.4-4.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le"
},
"product_reference": "fwupd-0:1.1.4-4.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x"
},
"product_reference": "fwupd-0:1.1.4-4.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-4.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src"
},
"product_reference": "fwupd-0:1.1.4-4.el8_1.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64"
},
"product_reference": "fwupd-0:1.1.4-4.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le"
},
"product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x"
},
"product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src"
},
"product_reference": "shim-0:15.4-2.el8_1.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64"
},
"product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64"
},
"product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64"
},
"product_reference": "shim-x64-0:15.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64"
},
"product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"relates_to_product_reference": "CRB-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src"
},
"product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"relates_to_product_reference": "CRB-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src"
},
"product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"relates_to_product_reference": "CRB-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)",
"product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"relates_to_product_reference": "CRB-8.1.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-09-28T14:40:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:3675"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src",
"BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0700
Vulnerability from csaf_redhat
Published
2021-03-02 21:02
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0700",
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0700.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:52+00:00",
"generator": {
"date": "2024-12-22T19:11:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0700",
"initial_release_date": "2021-03-02T21:02:32+00:00",
"revision_history": [
{
"date": "2021-03-02T21:02:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T21:02:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.3.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.3.src",
"product_id": "grub2-1:2.02-0.86.el7_7.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"product": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"product": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"product_id": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.src",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)",
"product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.src",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)",
"product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.src",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)",
"product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.src",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)",
"product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:02:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0700"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src",
"7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le",
"7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:2566
Vulnerability from csaf_redhat
Published
2021-06-29 16:36
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: fwupd security update
Notes
Topic
An update for fwupd is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The fwupd packages provide a service that allows session software to update device firmware.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for fwupd is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:2566",
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2566.json"
}
],
"title": "Red Hat Security Advisory: fwupd security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:41+00:00",
"generator": {
"date": "2024-12-22T19:11:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:2566",
"initial_release_date": "2021-06-29T16:36:26+00:00",
"revision_history": [
{
"date": "2021-06-29T16:36:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-06-29T16:36:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.5.9-1.el8_4.src",
"product": {
"name": "fwupd-0:1.5.9-1.el8_4.src",
"product_id": "fwupd-0:1.5.9-1.el8_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.5.9-1.el8_4.aarch64",
"product": {
"name": "fwupd-0:1.5.9-1.el8_4.aarch64",
"product_id": "fwupd-0:1.5.9-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"product": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"product": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"product": {
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.5.9-1.el8_4.ppc64le",
"product": {
"name": "fwupd-0:1.5.9-1.el8_4.ppc64le",
"product_id": "fwupd-0:1.5.9-1.el8_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"product": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"product": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.5.9-1.el8_4.x86_64",
"product": {
"name": "fwupd-0:1.5.9-1.el8_4.x86_64",
"product_id": "fwupd-0:1.5.9-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"product": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"product": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64",
"product": {
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64",
"product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.5.9-1.el8_4.s390x",
"product": {
"name": "fwupd-0:1.5.9-1.el8_4.s390x",
"product_id": "fwupd-0:1.5.9-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"product": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"product": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"product": {
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64"
},
"product_reference": "fwupd-0:1.5.9-1.el8_4.aarch64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le"
},
"product_reference": "fwupd-0:1.5.9-1.el8_4.ppc64le",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x"
},
"product_reference": "fwupd-0:1.5.9-1.el8_4.s390x",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.5.9-1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src"
},
"product_reference": "fwupd-0:1.5.9-1.el8_4.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64"
},
"product_reference": "fwupd-0:1.5.9-1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64"
},
"product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le"
},
"product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x"
},
"product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64"
},
"product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64"
},
"product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le"
},
"product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x"
},
"product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64"
},
"product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64"
},
"product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x"
},
"product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
},
"product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-06-29T16:36:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2566"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x",
"BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:1734
Vulnerability from csaf_redhat
Published
2021-05-18 13:47
Modified
2024-12-22 19:12
Summary
Red Hat Security Advisory: shim security update
Notes
Topic
An update for shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1734",
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1734.json"
}
],
"title": "Red Hat Security Advisory: shim security update",
"tracking": {
"current_release_date": "2024-12-22T19:12:12+00:00",
"generator": {
"date": "2024-12-22T19:12:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:1734",
"initial_release_date": "2021-05-18T13:47:25+00:00",
"revision_history": [
{
"date": "2021-05-18T13:47:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-05-18T13:47:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:12:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.4.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.GA",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-0:15.4-2.el8_1.src",
"product": {
"name": "shim-0:15.4-2.el8_1.src",
"product_id": "shim-0:15.4-2.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product": {
"name": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product_id": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product": {
"name": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product_id": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15.4-2.el8_1.x86_64",
"product": {
"name": "shim-x64-0:15.4-2.el8_1.x86_64",
"product_id": "shim-x64-0:15.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src"
},
"product_reference": "shim-0:15.4-2.el8_1.src",
"relates_to_product_reference": "BaseOS-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64"
},
"product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64"
},
"product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64"
},
"product_reference": "shim-x64-0:15.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64"
},
"product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"relates_to_product_reference": "CRB-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src"
},
"product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"relates_to_product_reference": "CRB-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src"
},
"product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"relates_to_product_reference": "CRB-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)",
"product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"relates_to_product_reference": "CRB-8.4.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T13:47:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1734"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src",
"BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0703
Vulnerability from csaf_redhat
Published
2021-03-02 19:39
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0703",
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0703.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:38+00:00",
"generator": {
"date": "2024-12-22T19:11:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0703",
"initial_release_date": "2021-03-02T19:39:02+00:00",
"revision_history": [
{
"date": "2021-03-02T19:39:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T19:39:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.3::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_3.2.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_3.2.src",
"product_id": "grub2-1:2.02-0.86.el7_3.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_3.2.src",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_3.2.src",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:39:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0703"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src",
"7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch",
"7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64",
"7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0699
Vulnerability from csaf_redhat
Published
2021-03-02 20:57
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0699",
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0699.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:58+00:00",
"generator": {
"date": "2024-12-22T19:11:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0699",
"initial_release_date": "2021-03-02T20:57:50+00:00",
"revision_history": [
{
"date": "2021-03-02T20:57:50+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T20:57:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.87.el7_9.2.src",
"product": {
"name": "grub2-1:2.02-0.87.el7_9.2.src",
"product_id": "grub2-1:2.02-0.87.el7_9.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"product": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"product": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"product": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"product_id": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"product": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.src",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.9.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:57:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0699"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src",
"7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le",
"7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0697
Vulnerability from csaf_redhat
Published
2021-03-02 19:28
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0697",
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0697.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:10+00:00",
"generator": {
"date": "2024-12-22T19:11:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0697",
"initial_release_date": "2021-03-02T19:28:47+00:00",
"revision_history": [
{
"date": "2021-03-02T19:28:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T19:28:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-87.el8_2.3.src",
"product": {
"name": "grub2-1:2.02-87.el8_2.3.src",
"product_id": "grub2-1:2.02-87.el8_2.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-87.el8_2.3?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-87.el8_2.3.noarch",
"product": {
"name": "grub2-common-1:2.02-87.el8_2.3.noarch",
"product_id": "grub2-common-1:2.02-87.el8_2.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_2.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"product_id": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-tools-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-pc-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-pc-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-87.el8_2.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src"
},
"product_reference": "grub2-1:2.02-87.el8_2.3.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch"
},
"product_reference": "grub2-common-1:2.02-87.el8_2.3.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:28:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0697"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src",
"BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le",
"BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:2790
Vulnerability from csaf_redhat
Published
2021-07-20 22:22
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: shim and fwupd security update
Notes
Topic
An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.
The fwupd packages provide a service that allows session software to update device firmware.
The following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932411)
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932411)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:2790",
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2790.json"
}
],
"title": "Red Hat Security Advisory: shim and fwupd security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:48+00:00",
"generator": {
"date": "2024-12-22T19:11:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:2790",
"initial_release_date": "2021-07-20T22:22:30+00:00",
"revision_history": [
{
"date": "2021-07-20T22:22:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-07-20T22:22:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)",
"product": {
"name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)",
"product_id": "CRB-8.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.2::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-0:15.4-2.el8_1.src",
"product": {
"name": "shim-0:15.4-2.el8_1.src",
"product_id": "shim-0:15.4-2.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-9.el8_2.src",
"product": {
"name": "fwupd-0:1.1.4-9.el8_2.src",
"product_id": "fwupd-0:1.1.4-9.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product": {
"name": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product_id": "shim-aa64-0:15.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-9.el8_2.aarch64",
"product": {
"name": "fwupd-0:1.1.4-9.el8_2.aarch64",
"product_id": "fwupd-0:1.1.4-9.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product": {
"name": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product_id": "shim-ia32-0:15.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-x64-0:15.4-2.el8_1.x86_64",
"product": {
"name": "shim-x64-0:15.4-2.el8_1.x86_64",
"product_id": "shim-x64-0:15.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-0:1.1.4-9.el8_2.x86_64",
"product": {
"name": "fwupd-0:1.1.4-9.el8_2.x86_64",
"product_id": "fwupd-0:1.1.4-9.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"product": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-9.el8_2.ppc64le",
"product": {
"name": "fwupd-0:1.1.4-9.el8_2.ppc64le",
"product_id": "fwupd-0:1.1.4-9.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"product": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "fwupd-0:1.1.4-9.el8_2.s390x",
"product": {
"name": "fwupd-0:1.1.4-9.el8_2.s390x",
"product_id": "fwupd-0:1.1.4-9.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"product": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"product": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64"
},
"product_reference": "fwupd-0:1.1.4-9.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le"
},
"product_reference": "fwupd-0:1.1.4-9.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x"
},
"product_reference": "fwupd-0:1.1.4-9.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-9.el8_2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src"
},
"product_reference": "fwupd-0:1.1.4-9.el8_2.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64"
},
"product_reference": "fwupd-0:1.1.4-9.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64"
},
"product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le"
},
"product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x"
},
"product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64"
},
"product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src"
},
"product_reference": "shim-0:15.4-2.el8_1.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64"
},
"product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64"
},
"product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64"
},
"product_reference": "shim-x64-0:15.4-2.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)",
"product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64"
},
"product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"relates_to_product_reference": "CRB-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)",
"product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src"
},
"product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src",
"relates_to_product_reference": "CRB-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)",
"product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src"
},
"product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src",
"relates_to_product_reference": "CRB-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)",
"product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
},
"product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64",
"relates_to_product_reference": "CRB-8.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-20T22:22:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2790"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src",
"BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src",
"BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64",
"BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64",
"BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64",
"CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src",
"CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0702
Vulnerability from csaf_redhat
Published
2021-03-02 20:14
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0702",
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0702.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:31+00:00",
"generator": {
"date": "2024-12-22T19:11:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0702",
"initial_release_date": "2021-03-02T20:14:17+00:00",
"revision_history": [
{
"date": "2021-03-02T20:14:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T20:14:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.4::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_4.2.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_4.2.src",
"product_id": "grub2-1:2.02-0.86.el7_4.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_4.2.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_4.2.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.src",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.src",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.src",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.src",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.src",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.src",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T20:14:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0702"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le",
"7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src",
"7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch",
"7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64",
"7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0698
Vulnerability from csaf_redhat
Published
2021-03-02 19:19
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0698",
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0698.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:24+00:00",
"generator": {
"date": "2024-12-22T19:11:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0698",
"initial_release_date": "2021-03-02T19:19:40+00:00",
"revision_history": [
{
"date": "2021-03-02T19:19:40+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T19:19:40+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-87.el8_1.2.src",
"product": {
"name": "grub2-1:2.02-87.el8_1.2.src",
"product_id": "grub2-1:2.02-87.el8_1.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-87.el8_1.2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-87.el8_1.2.noarch",
"product": {
"name": "grub2-common-1:2.02-87.el8_1.2.noarch",
"product_id": "grub2-common-1:2.02-87.el8_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_1.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"product_id": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-tools-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-pc-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-pc-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-87.el8_1.2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src"
},
"product_reference": "grub2-1:2.02-87.el8_1.2.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch"
},
"product_reference": "grub2-common-1:2.02-87.el8_1.2.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-pc-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:19:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0698"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src",
"BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le",
"BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0701
Vulnerability from csaf_redhat
Published
2021-03-02 21:13
Modified
2024-12-22 19:12
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0701",
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0701.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:12:05+00:00",
"generator": {
"date": "2024-12-22T19:12:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0701",
"initial_release_date": "2021-03-02T21:13:27+00:00",
"revision_history": [
{
"date": "2021-03-02T21:13:27+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T21:13:27+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:12:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"product": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"product_id": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.3.src",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.3.src",
"product_id": "grub2-1:2.02-0.86.el7_6.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"product": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"product": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"product_id": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"product": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"product": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"product": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"product": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.src",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.src",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.src",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.src",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.src",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T21:13:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0701"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src",
"7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le",
"7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
rhsa-2021:0696
Vulnerability from csaf_redhat
Published
2021-03-02 19:23
Modified
2024-12-22 19:11
Summary
Red Hat Security Advisory: grub2 security update
Notes
Topic
An update for grub2 is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)
* grub2: Use-after-free in rmmod command (CVE-2020-25632)
* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)
* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)
* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)
* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)
* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:0696",
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
},
{
"category": "external",
"summary": "1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0696.json"
}
],
"title": "Red Hat Security Advisory: grub2 security update",
"tracking": {
"current_release_date": "2024-12-22T19:11:17+00:00",
"generator": {
"date": "2024-12-22T19:11:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2021:0696",
"initial_release_date": "2021-03-02T19:23:36+00:00",
"revision_history": [
{
"date": "2021-03-02T19:23:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-02T19:23:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-22T19:11:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-1:2.02-90.el8_3.1.src",
"product": {
"name": "grub2-1:2.02-90.el8_3.1.src",
"product_id": "grub2-1:2.02-90.el8_3.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2@2.02-90.el8_3.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-common-1:2.02-90.el8_3.1.noarch",
"product": {
"name": "grub2-common-1:2.02-90.el8_3.1.noarch",
"product_id": "grub2-common-1:2.02-90.el8_3.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-common@2.02-90.el8_3.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"product": {
"name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"product_id": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"product": {
"name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"product_id": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"product": {
"name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"product_id": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"product": {
"name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"product_id": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"product": {
"name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"product_id": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-tools-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-tools-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-pc-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-pc-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-pc-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-pc@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-1:2.02-90.el8_3.1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src"
},
"product_reference": "grub2-1:2.02-90.el8_3.1.src",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-common-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch"
},
"product_reference": "grub2-common-1:2.02-90.el8_3.1.noarch",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch"
},
"product_reference": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch"
},
"product_reference": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch"
},
"product_reference": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-pc-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch"
},
"product_reference": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch"
},
"product_reference": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-tools-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
},
"product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"M\u00e1t\u00e9 Kukri"
]
}
],
"cve": "CVE-2020-14372",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"discovery_date": "2020-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1873150"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "RHBZ#1873150",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled"
},
{
"cve": "CVE-2020-25632",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-09-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1879577"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Use-after-free in rmmod command",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "RHBZ#1879577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25632"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Use-after-free in rmmod command"
},
{
"acknowledgments": [
{
"names": [
"Joseph Tartaro",
"Ilja van Sprundel"
],
"organization": "IOActive"
}
],
"cve": "CVE-2020-25647",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2020-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1886936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Out-of-bounds write in grub_usb_device_initialize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "RHBZ#1886936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25647"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Out-of-bounds write in grub_usb_device_initialize()"
},
{
"acknowledgments": [
{
"names": [
"Chris Coulson"
],
"organization": "Canonical"
}
],
"cve": "CVE-2020-27749",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1899966"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "RHBZ#1899966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()"
},
{
"cve": "CVE-2020-27779",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2020-11-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1900698"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "RHBZ#1900698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27779"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled"
},
{
"cve": "CVE-2021-20225",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1924696"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write in short form option parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "RHBZ#1924696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20225"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write in short form option parser"
},
{
"cve": "CVE-2021-20233",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-02-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1926263"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "RHBZ#1926263",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20233"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233"
}
],
"release_date": "2021-03-02T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-02T19:23:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:0696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src",
"BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le",
"BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting"
}
]
}
suse-su-2021:0681-1
Vulnerability from csaf_suse
Published
2021-03-02 18:03
Modified
2021-03-02 18:03
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
Following security issues are fixed that can violate secure boot constraints:
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Patchnames
SUSE-2021-681,SUSE-OpenStack-Cloud-9-2021-681,SUSE-OpenStack-Cloud-Crowbar-9-2021-681,SUSE-SLE-SAP-12-SP4-2021-681,SUSE-SLE-SERVER-12-SP4-LTSS-2021-681,SUSE-SLE-SERVER-12-SP5-2021-681
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-681,SUSE-OpenStack-Cloud-9-2021-681,SUSE-OpenStack-Cloud-Crowbar-9-2021-681,SUSE-SLE-SAP-12-SP4-2021-681,SUSE-SLE-SERVER-12-SP4-LTSS-2021-681,SUSE-SLE-SERVER-12-SP5-2021-681",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0681-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:0681-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210681-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:0681-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008422.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:03:48Z",
"generator": {
"date": "2021-03-02T18:03:48Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:0681-1",
"initial_release_date": "2021-03-02T18:03:48Z",
"revision_history": [
{
"date": "2021-03-02T18:03:48Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.47.1.aarch64",
"product": {
"name": "grub2-2.02-12.47.1.aarch64",
"product_id": "grub2-2.02-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-12.47.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-12.47.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.47.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-12.47.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-12.47.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.47.1.i586",
"product": {
"name": "grub2-2.02-12.47.1.i586",
"product_id": "grub2-2.02-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.47.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-12.47.1.i586",
"product_id": "grub2-branding-upstream-2.02-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-12.47.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-12.47.1.i586",
"product_id": "grub2-i386-efi-2.02-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-12.47.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-12.47.1.i586",
"product_id": "grub2-i386-pc-2.02-12.47.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-12.47.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"product": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"product_id": "grub2-x86_64-xen-2.02-12.47.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.47.1.ppc64le",
"product": {
"name": "grub2-2.02-12.47.1.ppc64le",
"product_id": "grub2-2.02-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.47.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-12.47.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.47.1.s390x",
"product": {
"name": "grub2-2.02-12.47.1.s390x",
"product_id": "grub2-2.02-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.47.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-12.47.1.s390x",
"product_id": "grub2-branding-upstream-2.02-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-12.47.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-12.47.1.s390x",
"product_id": "grub2-s390x-emu-2.02-12.47.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-12.47.1.x86_64",
"product": {
"name": "grub2-2.02-12.47.1.x86_64",
"product_id": "grub2-2.02-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-12.47.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-12.47.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-12.47.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64",
"product_id": "grub2-i386-pc-2.02-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-12.47.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64"
},
"product_reference": "grub2-2.02-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x"
},
"product_reference": "grub2-2.02-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64"
},
"product_reference": "grub2-2.02-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x"
},
"product_reference": "grub2-2.02-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64"
},
"product_reference": "grub2-2.02-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x"
},
"product_reference": "grub2-2.02-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:48Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
suse-su-2021:14659-1
Vulnerability from csaf_suse
Published
2021-03-02 18:03
Modified
2021-03-02 18:03
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
grub2 was updated to the 2.02 version (same as SUSE Linux Enterprise 12 SP3).
Following security issues are fixed that can violate secure boot constraints:
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Patchnames
slessp4-grub2-14659
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\ngrub2 was updated to the 2.02 version (same as SUSE Linux Enterprise 12 SP3).\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp4-grub2-14659",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_14659-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:14659-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-202114659-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:14659-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2021-March/018162.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9763 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:03:21Z",
"generator": {
"date": "2021-03-02T18:03:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:14659-1",
"initial_release_date": "2021-03-02T18:03:21Z",
"revision_history": [
{
"date": "2021-03-02T18:03:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-9763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9763"
}
],
"notes": [
{
"category": "general",
"text": "The grub_ext2_read_block function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote attackers to cause a denial of service (excessive stack use and application crash) via a crafted binary file, related to use of a variable-size stack array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9763",
"url": "https://www.suse.com/security/cve/CVE-2017-9763"
},
{
"category": "external",
"summary": "SUSE Bug 1045063 for CVE-2017-9763",
"url": "https://bugzilla.suse.com/1045063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-9763"
},
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:03:21Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
suse-su-2021:0682-1
Vulnerability from csaf_suse
Published
2021-03-02 18:04
Modified
2021-03-02 18:04
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
Following security issues are fixed that can violate secure boot constraints:
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Patchnames
HPE-Helion-OpenStack-8-2021-682,SUSE-2021-682,SUSE-OpenStack-Cloud-8-2021-682,SUSE-OpenStack-Cloud-Crowbar-8-2021-682,SUSE-SLE-SAP-12-SP3-2021-682,SUSE-SLE-SERVER-12-SP3-2021-682,SUSE-SLE-SERVER-12-SP3-BCL-2021-682
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2021-682,SUSE-2021-682,SUSE-OpenStack-Cloud-8-2021-682,SUSE-OpenStack-Cloud-Crowbar-8-2021-682,SUSE-SLE-SAP-12-SP3-2021-682,SUSE-SLE-SERVER-12-SP3-2021-682,SUSE-SLE-SERVER-12-SP3-BCL-2021-682",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0682-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:0682-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210682-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:0682-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008424.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:04:20Z",
"generator": {
"date": "2021-03-02T18:04:20Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:0682-1",
"initial_release_date": "2021-03-02T18:04:20Z",
"revision_history": [
{
"date": "2021-03-02T18:04:20Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.69.1.aarch64",
"product": {
"name": "grub2-2.02-4.69.1.aarch64",
"product_id": "grub2-2.02-4.69.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-4.69.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-4.69.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-4.69.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.69.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-4.69.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-4.69.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.69.1.i586",
"product": {
"name": "grub2-2.02-4.69.1.i586",
"product_id": "grub2-2.02-4.69.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.69.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-4.69.1.i586",
"product_id": "grub2-branding-upstream-2.02-4.69.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-4.69.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-4.69.1.i586",
"product_id": "grub2-i386-efi-2.02-4.69.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-4.69.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-4.69.1.i586",
"product_id": "grub2-i386-pc-2.02-4.69.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-4.69.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.69.1.ppc64le",
"product": {
"name": "grub2-2.02-4.69.1.ppc64le",
"product_id": "grub2-2.02-4.69.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.69.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-4.69.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-4.69.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.69.1.s390x",
"product": {
"name": "grub2-2.02-4.69.1.s390x",
"product_id": "grub2-2.02-4.69.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.69.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-4.69.1.s390x",
"product_id": "grub2-branding-upstream-2.02-4.69.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-4.69.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-4.69.1.s390x",
"product_id": "grub2-s390x-emu-2.02-4.69.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-4.69.1.x86_64",
"product": {
"name": "grub2-2.02-4.69.1.x86_64",
"product_id": "grub2-2.02-4.69.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-4.69.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64",
"product_id": "grub2-i386-pc-2.02-4.69.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-4.69.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02-4.69.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-4.69.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-4.69.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-4.69.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-2.02-4.69.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le"
},
"product_reference": "grub2-2.02-4.69.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64"
},
"product_reference": "grub2-2.02-4.69.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le"
},
"product_reference": "grub2-2.02-4.69.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x"
},
"product_reference": "grub2-2.02-4.69.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-4.69.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-4.69.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-4.69.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-4.69.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:20Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
suse-su-2021:0683-1
Vulnerability from csaf_suse
Published
2021-03-02 18:04
Modified
2021-03-02 18:04
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Patchnames
SUSE-2021-683,SUSE-SLE-Module-Basesystem-15-SP2-2021-683,SUSE-SLE-Module-Server-Applications-15-SP2-2021-683
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-683,SUSE-SLE-Module-Basesystem-15-SP2-2021-683,SUSE-SLE-Module-Server-Applications-15-SP2-2021-683",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0683-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:0683-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210683-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:0683-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008423.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:04:52Z",
"generator": {
"date": "2021-03-02T18:04:52Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:0683-1",
"initial_release_date": "2021-03-02T18:04:52Z",
"revision_history": [
{
"date": "2021-03-02T18:04:52Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.34.1.aarch64",
"product": {
"name": "grub2-2.04-9.34.1.aarch64",
"product_id": "grub2-2.04-9.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.34.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.04-9.34.1.aarch64",
"product_id": "grub2-branding-upstream-2.04-9.34.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.34.1.i586",
"product": {
"name": "grub2-2.04-9.34.1.i586",
"product_id": "grub2-2.04-9.34.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.34.1.i586",
"product": {
"name": "grub2-branding-upstream-2.04-9.34.1.i586",
"product_id": "grub2-branding-upstream-2.04-9.34.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-arm64-efi-2.04-9.34.1.noarch",
"product": {
"name": "grub2-arm64-efi-2.04-9.34.1.noarch",
"product_id": "grub2-arm64-efi-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-debug-2.04-9.34.1.noarch",
"product": {
"name": "grub2-arm64-efi-debug-2.04-9.34.1.noarch",
"product_id": "grub2-arm64-efi-debug-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.04-9.34.1.noarch",
"product": {
"name": "grub2-i386-efi-2.04-9.34.1.noarch",
"product_id": "grub2-i386-efi-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-debug-2.04-9.34.1.noarch",
"product": {
"name": "grub2-i386-efi-debug-2.04-9.34.1.noarch",
"product_id": "grub2-i386-efi-debug-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.04-9.34.1.noarch",
"product": {
"name": "grub2-i386-pc-2.04-9.34.1.noarch",
"product_id": "grub2-i386-pc-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.04-9.34.1.noarch",
"product": {
"name": "grub2-i386-pc-debug-2.04-9.34.1.noarch",
"product_id": "grub2-i386-pc-debug-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.04-9.34.1.noarch",
"product": {
"name": "grub2-i386-xen-2.04-9.34.1.noarch",
"product_id": "grub2-i386-xen-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"product": {
"name": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"product_id": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-debug-2.04-9.34.1.noarch",
"product": {
"name": "grub2-powerpc-ieee1275-debug-2.04-9.34.1.noarch",
"product_id": "grub2-powerpc-ieee1275-debug-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.04-9.34.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.04-9.34.1.noarch",
"product_id": "grub2-snapper-plugin-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.04-9.34.1.noarch",
"product": {
"name": "grub2-x86_64-efi-2.04-9.34.1.noarch",
"product_id": "grub2-x86_64-efi-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.04-9.34.1.noarch",
"product": {
"name": "grub2-x86_64-efi-debug-2.04-9.34.1.noarch",
"product_id": "grub2-x86_64-efi-debug-2.04-9.34.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.04-9.34.1.noarch",
"product": {
"name": "grub2-x86_64-xen-2.04-9.34.1.noarch",
"product_id": "grub2-x86_64-xen-2.04-9.34.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.34.1.ppc64le",
"product": {
"name": "grub2-2.04-9.34.1.ppc64le",
"product_id": "grub2-2.04-9.34.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.34.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.04-9.34.1.ppc64le",
"product_id": "grub2-branding-upstream-2.04-9.34.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.34.1.s390x",
"product": {
"name": "grub2-2.04-9.34.1.s390x",
"product_id": "grub2-2.04-9.34.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.34.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.04-9.34.1.s390x",
"product_id": "grub2-branding-upstream-2.04-9.34.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.04-9.34.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.04-9.34.1.s390x",
"product_id": "grub2-s390x-emu-2.04-9.34.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-debug-2.04-9.34.1.s390x",
"product": {
"name": "grub2-s390x-emu-debug-2.04-9.34.1.s390x",
"product_id": "grub2-s390x-emu-debug-2.04-9.34.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-9.34.1.x86_64",
"product": {
"name": "grub2-2.04-9.34.1.x86_64",
"product_id": "grub2-2.04-9.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-9.34.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.04-9.34.1.x86_64",
"product_id": "grub2-branding-upstream-2.04-9.34.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.34.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64"
},
"product_reference": "grub2-2.04-9.34.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.34.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le"
},
"product_reference": "grub2-2.04-9.34.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.34.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x"
},
"product_reference": "grub2-2.04-9.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-9.34.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64"
},
"product_reference": "grub2-2.04-9.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch"
},
"product_reference": "grub2-i386-pc-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch"
},
"product_reference": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.04-9.34.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.04-9.34.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.04-9.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:04:52Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
suse-su-2021:0685-1
Vulnerability from csaf_suse
Published
2021-03-02 18:06
Modified
2021-03-02 18:06
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
Following security issues are fixed that can violate secure boot constraints:
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Patchnames
SUSE-2021-685,SUSE-SLE-Product-HPC-15-2021-685,SUSE-SLE-Product-SLES-15-2021-685,SUSE-SLE-Product-SLES_SAP-15-2021-685
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-685,SUSE-SLE-Product-HPC-15-2021-685,SUSE-SLE-Product-SLES-15-2021-685,SUSE-SLE-Product-SLES_SAP-15-2021-685",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0685-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:0685-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210685-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:0685-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008418.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:06:17Z",
"generator": {
"date": "2021-03-02T18:06:17Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:0685-1",
"initial_release_date": "2021-03-02T18:06:17Z",
"revision_history": [
{
"date": "2021-03-02T18:06:17Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.66.1.aarch64",
"product": {
"name": "grub2-2.02-19.66.1.aarch64",
"product_id": "grub2-2.02-19.66.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-19.66.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-19.66.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-19.66.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.66.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-19.66.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-19.66.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.66.1.i586",
"product": {
"name": "grub2-2.02-19.66.1.i586",
"product_id": "grub2-2.02-19.66.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.66.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-19.66.1.i586",
"product_id": "grub2-branding-upstream-2.02-19.66.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-19.66.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-19.66.1.i586",
"product_id": "grub2-i386-efi-2.02-19.66.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-19.66.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-19.66.1.i586",
"product_id": "grub2-i386-pc-2.02-19.66.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.02-19.66.1.i586",
"product": {
"name": "grub2-i386-xen-2.02-19.66.1.i586",
"product_id": "grub2-i386-xen-2.02-19.66.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-19.66.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-19.66.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-19.66.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.66.1.ppc64le",
"product": {
"name": "grub2-2.02-19.66.1.ppc64le",
"product_id": "grub2-2.02-19.66.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.66.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-19.66.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-19.66.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.66.1.s390x",
"product": {
"name": "grub2-2.02-19.66.1.s390x",
"product_id": "grub2-2.02-19.66.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.66.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-19.66.1.s390x",
"product_id": "grub2-branding-upstream-2.02-19.66.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-19.66.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-19.66.1.s390x",
"product_id": "grub2-s390x-emu-2.02-19.66.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-19.66.1.x86_64",
"product": {
"name": "grub2-2.02-19.66.1.x86_64",
"product_id": "grub2-2.02-19.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-19.66.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-19.66.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-19.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-19.66.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-19.66.1.x86_64",
"product_id": "grub2-i386-pc-2.02-19.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-19.66.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-19.66.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-19.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-19.66.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02-19.66.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02-19.66.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64"
},
"product_reference": "grub2-2.02-19.66.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-19.66.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64"
},
"product_reference": "grub2-2.02-19.66.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-19.66.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64"
},
"product_reference": "grub2-2.02-19.66.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le"
},
"product_reference": "grub2-2.02-19.66.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x"
},
"product_reference": "grub2-2.02-19.66.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64"
},
"product_reference": "grub2-arm64-efi-2.02-19.66.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-19.66.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-19.66.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le"
},
"product_reference": "grub2-2.02-19.66.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:06:17Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
suse-su-2021:0684-1
Vulnerability from csaf_suse
Published
2021-03-02 18:05
Modified
2021-03-02 18:05
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
Following security issues are fixed that can violate secure boot constraints:
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Patchnames
SUSE-2021-684,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-684,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-684,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-684,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-684,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-684,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-684,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-684,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-684,SUSE-Storage-6-2021-684
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-684,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-684,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-684,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-684,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-684,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-684,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-684,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-684,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-684,SUSE-Storage-6-2021-684",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0684-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:0684-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210684-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:0684-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008427.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:05:46Z",
"generator": {
"date": "2021-03-02T18:05:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:0684-1",
"initial_release_date": "2021-03-02T18:05:46Z",
"revision_history": [
{
"date": "2021-03-02T18:05:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.43.1.aarch64",
"product": {
"name": "grub2-2.02-26.43.1.aarch64",
"product_id": "grub2-2.02-26.43.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.43.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-26.43.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-26.43.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.43.1.i586",
"product": {
"name": "grub2-2.02-26.43.1.i586",
"product_id": "grub2-2.02-26.43.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.43.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-26.43.1.i586",
"product_id": "grub2-branding-upstream-2.02-26.43.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-26.43.1.noarch",
"product": {
"name": "grub2-arm64-efi-2.02-26.43.1.noarch",
"product_id": "grub2-arm64-efi-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-26.43.1.noarch",
"product": {
"name": "grub2-i386-efi-2.02-26.43.1.noarch",
"product_id": "grub2-i386-efi-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-26.43.1.noarch",
"product": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch",
"product_id": "grub2-i386-pc-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.02-26.43.1.noarch",
"product": {
"name": "grub2-i386-xen-2.02-26.43.1.noarch",
"product_id": "grub2-i386-xen-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"product_id": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"product": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"product_id": "grub2-x86_64-efi-2.02-26.43.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"product": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"product_id": "grub2-x86_64-xen-2.02-26.43.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.43.1.ppc64le",
"product": {
"name": "grub2-2.02-26.43.1.ppc64le",
"product_id": "grub2-2.02-26.43.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.43.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-26.43.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-26.43.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.43.1.s390x",
"product": {
"name": "grub2-2.02-26.43.1.s390x",
"product_id": "grub2-2.02-26.43.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.43.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-26.43.1.s390x",
"product_id": "grub2-branding-upstream-2.02-26.43.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-26.43.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-26.43.1.s390x",
"product_id": "grub2-s390x-emu-2.02-26.43.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-26.43.1.x86_64",
"product": {
"name": "grub2-2.02-26.43.1.x86_64",
"product_id": "grub2-2.02-26.43.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-26.43.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-26.43.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-26.43.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.0",
"product": {
"name": "SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.0",
"product": {
"name": "SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.0",
"product": {
"name": "SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64"
},
"product_reference": "grub2-2.02-26.43.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64"
},
"product_reference": "grub2-2.02-26.43.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64"
},
"product_reference": "grub2-2.02-26.43.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le"
},
"product_reference": "grub2-2.02-26.43.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x"
},
"product_reference": "grub2-2.02-26.43.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-26.43.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-26.43.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le"
},
"product_reference": "grub2-2.02-26.43.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le"
},
"product_reference": "grub2-2.02-26.43.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x"
},
"product_reference": "grub2-2.02-26.43.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-26.43.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-26.43.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64"
},
"product_reference": "grub2-2.02-26.43.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64"
},
"product_reference": "grub2-2.02-26.43.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch"
},
"product_reference": "grub2-i386-pc-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch"
},
"product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64",
"SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64",
"SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64",
"SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x",
"SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch",
"SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:05:46Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
suse-su-2021:0679-1
Vulnerability from csaf_suse
Published
2021-03-02 18:02
Modified
2021-03-02 18:02
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
Following security issues are fixed that can violate secure boot constraints:
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
grub2 was bumped to version 2.02, same as SUSE Linux Enterprise 12 SP3.
Patchnames
SUSE-2021-679,SUSE-OpenStack-Cloud-7-2021-679,SUSE-SLE-SAP-12-SP2-2021-679,SUSE-SLE-SERVER-12-SP2-2021-679,SUSE-SLE-SERVER-12-SP2-BCL-2021-679
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\ngrub2 was bumped to version 2.02, same as SUSE Linux Enterprise 12 SP3.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-679,SUSE-OpenStack-Cloud-7-2021-679,SUSE-SLE-SAP-12-SP2-2021-679,SUSE-SLE-SERVER-12-SP2-2021-679,SUSE-SLE-SERVER-12-SP2-BCL-2021-679",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0679-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:0679-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210679-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:0679-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008425.html"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-02T18:02:55Z",
"generator": {
"date": "2021-03-02T18:02:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:0679-1",
"initial_release_date": "2021-03-02T18:02:55Z",
"revision_history": [
{
"date": "2021-03-02T18:02:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-115.59.1.aarch64",
"product": {
"name": "grub2-2.02-115.59.1.aarch64",
"product_id": "grub2-2.02-115.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-arm64-efi-2.02-115.59.1.aarch64",
"product": {
"name": "grub2-arm64-efi-2.02-115.59.1.aarch64",
"product_id": "grub2-arm64-efi-2.02-115.59.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-115.59.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.02-115.59.1.aarch64",
"product_id": "grub2-branding-upstream-2.02-115.59.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-115.59.1.i586",
"product": {
"name": "grub2-2.02-115.59.1.i586",
"product_id": "grub2-2.02-115.59.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-115.59.1.i586",
"product": {
"name": "grub2-branding-upstream-2.02-115.59.1.i586",
"product_id": "grub2-branding-upstream-2.02-115.59.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-2.02-115.59.1.i586",
"product": {
"name": "grub2-i386-efi-2.02-115.59.1.i586",
"product_id": "grub2-i386-efi-2.02-115.59.1.i586"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-115.59.1.i586",
"product": {
"name": "grub2-i386-pc-2.02-115.59.1.i586",
"product_id": "grub2-i386-pc-2.02-115.59.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.02-115.59.1.noarch",
"product": {
"name": "grub2-snapper-plugin-2.02-115.59.1.noarch",
"product_id": "grub2-snapper-plugin-2.02-115.59.1.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-115.59.1.ppc64le",
"product": {
"name": "grub2-2.02-115.59.1.ppc64le",
"product_id": "grub2-2.02-115.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-115.59.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.02-115.59.1.ppc64le",
"product_id": "grub2-branding-upstream-2.02-115.59.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"product": {
"name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"product_id": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-115.59.1.s390x",
"product": {
"name": "grub2-2.02-115.59.1.s390x",
"product_id": "grub2-2.02-115.59.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-115.59.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.02-115.59.1.s390x",
"product_id": "grub2-branding-upstream-2.02-115.59.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-s390x-emu-2.02-115.59.1.s390x",
"product": {
"name": "grub2-s390x-emu-2.02-115.59.1.s390x",
"product_id": "grub2-s390x-emu-2.02-115.59.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.02-115.59.1.x86_64",
"product": {
"name": "grub2-2.02-115.59.1.x86_64",
"product_id": "grub2-2.02-115.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.02-115.59.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.02-115.59.1.x86_64",
"product_id": "grub2-branding-upstream-2.02-115.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.02-115.59.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.02-115.59.1.x86_64",
"product_id": "grub2-i386-pc-2.02-115.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.02-115.59.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.02-115.59.1.x86_64",
"product_id": "grub2-x86_64-efi-2.02-115.59.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.02-115.59.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.02-115.59.1.x86_64",
"product_id": "grub2-x86_64-xen-2.02-115.59.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x"
},
"product_reference": "grub2-2.02-115.59.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-115.59.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-115.59.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le"
},
"product_reference": "grub2-2.02-115.59.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le"
},
"product_reference": "grub2-2.02-115.59.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x"
},
"product_reference": "grub2-2.02-115.59.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le"
},
"product_reference": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-s390x-emu-2.02-115.59.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x"
},
"product_reference": "grub2-s390x-emu-2.02-115.59.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x",
"SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch",
"SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64",
"SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-02T18:02:55Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
opensuse-su-2021:0462-1
Vulnerability from csaf_opensuse
Published
2021-03-22 11:05
Modified
2021-03-22 11:05
Summary
Security update for grub2
Notes
Title of the patch
Security update for grub2
Description of the patch
This update for grub2 fixes the following issues:
grub2 implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
- Fixed chainloading windows on dual boot machine (bsc#1183073)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patchnames
openSUSE-2021-462
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grub2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grub2 fixes the following issues:\n\ngrub2 implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n- Fixed chainloading windows on dual boot machine (bsc#1183073)\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-462",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_0462-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:0462-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XXPYL42MSKRB4D7LRFMW7PBGGLKSJKPS/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:0462-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XXPYL42MSKRB4D7LRFMW7PBGGLKSJKPS/"
},
{
"category": "self",
"summary": "SUSE Bug 1175970",
"url": "https://bugzilla.suse.com/1175970"
},
{
"category": "self",
"summary": "SUSE Bug 1176711",
"url": "https://bugzilla.suse.com/1176711"
},
{
"category": "self",
"summary": "SUSE Bug 1177883",
"url": "https://bugzilla.suse.com/1177883"
},
{
"category": "self",
"summary": "SUSE Bug 1179264",
"url": "https://bugzilla.suse.com/1179264"
},
{
"category": "self",
"summary": "SUSE Bug 1179265",
"url": "https://bugzilla.suse.com/1179265"
},
{
"category": "self",
"summary": "SUSE Bug 1182057",
"url": "https://bugzilla.suse.com/1182057"
},
{
"category": "self",
"summary": "SUSE Bug 1182262",
"url": "https://bugzilla.suse.com/1182262"
},
{
"category": "self",
"summary": "SUSE Bug 1182263",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "self",
"summary": "SUSE Bug 1183073",
"url": "https://bugzilla.suse.com/1183073"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14372 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "Security update for grub2",
"tracking": {
"current_release_date": "2021-03-22T11:05:35Z",
"generator": {
"date": "2021-03-22T11:05:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:0462-1",
"initial_release_date": "2021-03-22T11:05:35Z",
"revision_history": [
{
"date": "2021-03-22T11:05:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-lp152.7.22.7.i586",
"product": {
"name": "grub2-2.04-lp152.7.22.7.i586",
"product_id": "grub2-2.04-lp152.7.22.7.i586"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"product": {
"name": "grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"product_id": "grub2-branding-upstream-2.04-lp152.7.22.7.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-i386-efi-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-i386-pc-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-i386-xen-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch",
"product": {
"name": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch",
"product_id": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.04-lp152.7.22.7.x86_64",
"product": {
"name": "grub2-2.04-lp152.7.22.7.x86_64",
"product_id": "grub2-2.04-lp152.7.22.7.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"product": {
"name": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"product_id": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-lp152.7.22.7.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586"
},
"product_reference": "grub2-2.04-lp152.7.22.7.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.04-lp152.7.22.7.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64"
},
"product_reference": "grub2-2.04-lp152.7.22.7.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.04-lp152.7.22.7.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586"
},
"product_reference": "grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64"
},
"product_reference": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-efi-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-xen-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
},
"product_reference": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-14372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14372"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14372",
"url": "https://www.suse.com/security/cve/CVE-2020-14372"
},
{
"category": "external",
"summary": "SUSE Bug 1175970 for CVE-2020-14372",
"url": "https://bugzilla.suse.com/1175970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2020-14372"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586",
"openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64",
"openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch",
"openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-22T11:05:35Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
opensuse-su-2024:10824-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
grub2-2.06-7.1 on GA media
Notes
Title of the patch
grub2-2.06-7.1 on GA media
Description of the patch
These are all security issues fixed in the grub2-2.06-7.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10824
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "grub2-2.06-7.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the grub2-2.06-7.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10824",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10824-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10713 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-14308 page",
"url": "https://www.suse.com/security/cve/CVE-2020-14308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15705 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15706 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-15707 page",
"url": "https://www.suse.com/security/cve/CVE-2020-15707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25632 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25647 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25647/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27749 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27779 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20225 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20233 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20233/"
}
],
"title": "grub2-2.06-7.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10824-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.aarch64",
"product": {
"name": "grub2-2.06-7.1.aarch64",
"product_id": "grub2-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.aarch64",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.aarch64",
"product_id": "grub2-branding-upstream-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.aarch64",
"product": {
"name": "grub2-i386-pc-2.06-7.1.aarch64",
"product_id": "grub2-i386-pc-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.aarch64",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.aarch64",
"product_id": "grub2-i386-pc-debug-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.aarch64",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.aarch64",
"product_id": "grub2-snapper-plugin-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.aarch64",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.aarch64",
"product_id": "grub2-x86_64-efi-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.aarch64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.aarch64",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.aarch64",
"product_id": "grub2-x86_64-xen-2.06-7.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.ppc64le",
"product": {
"name": "grub2-2.06-7.1.ppc64le",
"product_id": "grub2-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.ppc64le",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.ppc64le",
"product_id": "grub2-branding-upstream-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.ppc64le",
"product": {
"name": "grub2-i386-pc-2.06-7.1.ppc64le",
"product_id": "grub2-i386-pc-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.ppc64le",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.ppc64le",
"product_id": "grub2-i386-pc-debug-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.ppc64le",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.ppc64le",
"product_id": "grub2-snapper-plugin-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.ppc64le",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.ppc64le",
"product_id": "grub2-x86_64-efi-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.ppc64le",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.ppc64le",
"product_id": "grub2-x86_64-xen-2.06-7.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.s390x",
"product": {
"name": "grub2-2.06-7.1.s390x",
"product_id": "grub2-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.s390x",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.s390x",
"product_id": "grub2-branding-upstream-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.s390x",
"product": {
"name": "grub2-i386-pc-2.06-7.1.s390x",
"product_id": "grub2-i386-pc-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.s390x",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.s390x",
"product_id": "grub2-i386-pc-debug-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.s390x",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.s390x",
"product_id": "grub2-snapper-plugin-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.s390x",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.s390x",
"product_id": "grub2-x86_64-efi-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.s390x",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.s390x",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.s390x"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.s390x",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.s390x",
"product_id": "grub2-x86_64-xen-2.06-7.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grub2-2.06-7.1.x86_64",
"product": {
"name": "grub2-2.06-7.1.x86_64",
"product_id": "grub2-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-branding-upstream-2.06-7.1.x86_64",
"product": {
"name": "grub2-branding-upstream-2.06-7.1.x86_64",
"product_id": "grub2-branding-upstream-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-2.06-7.1.x86_64",
"product": {
"name": "grub2-i386-pc-2.06-7.1.x86_64",
"product_id": "grub2-i386-pc-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-i386-pc-debug-2.06-7.1.x86_64",
"product": {
"name": "grub2-i386-pc-debug-2.06-7.1.x86_64",
"product_id": "grub2-i386-pc-debug-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-snapper-plugin-2.06-7.1.x86_64",
"product": {
"name": "grub2-snapper-plugin-2.06-7.1.x86_64",
"product_id": "grub2-snapper-plugin-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"product": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"product_id": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-2.06-7.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-2.06-7.1.x86_64",
"product_id": "grub2-x86_64-efi-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"product": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"product_id": "grub2-x86_64-efi-debug-2.06-7.1.x86_64"
}
},
{
"category": "product_version",
"name": "grub2-x86_64-xen-2.06-7.1.x86_64",
"product": {
"name": "grub2-x86_64-xen-2.06-7.1.x86_64",
"product_id": "grub2-x86_64-xen-2.06-7.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64"
},
"product_reference": "grub2-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le"
},
"product_reference": "grub2-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.s390x"
},
"product_reference": "grub2-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64"
},
"product_reference": "grub2-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-branding-upstream-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64"
},
"product_reference": "grub2-branding-upstream-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64"
},
"product_reference": "grub2-i386-pc-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le"
},
"product_reference": "grub2-i386-pc-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x"
},
"product_reference": "grub2-i386-pc-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64"
},
"product_reference": "grub2-i386-pc-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-i386-pc-debug-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64"
},
"product_reference": "grub2-i386-pc-debug-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-snapper-plugin-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64"
},
"product_reference": "grub2-snapper-plugin-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64"
},
"product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64"
},
"product_reference": "grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grub2-x86_64-xen-2.06-7.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
},
"product_reference": "grub2-x86_64-xen-2.06-7.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10713"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10713",
"url": "https://www.suse.com/security/cve/CVE-2020-10713"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173456 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173456"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1173812"
},
{
"category": "external",
"summary": "SUSE Bug 1199353 for CVE-2020-10713",
"url": "https://bugzilla.suse.com/1199353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-10713"
},
{
"cve": "CVE-2020-14308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-14308"
}
],
"notes": [
{
"category": "general",
"text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-14308",
"url": "https://www.suse.com/security/cve/CVE-2020-14308"
},
{
"category": "external",
"summary": "SUSE Bug 1168994 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1168994"
},
{
"category": "external",
"summary": "SUSE Bug 1173812 for CVE-2020-14308",
"url": "https://bugzilla.suse.com/1173812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-14308"
},
{
"cve": "CVE-2020-15705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15705"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15705",
"url": "https://www.suse.com/security/cve/CVE-2020-15705"
},
{
"category": "external",
"summary": "SUSE Bug 1174421 for CVE-2020-15705",
"url": "https://bugzilla.suse.com/1174421"
},
{
"category": "external",
"summary": "SUSE Bug 1182890 for CVE-2020-15705",
"url": "https://bugzilla.suse.com/1182890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-15705"
},
{
"cve": "CVE-2020-15706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15706"
}
],
"notes": [
{
"category": "general",
"text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15706",
"url": "https://www.suse.com/security/cve/CVE-2020-15706"
},
{
"category": "external",
"summary": "SUSE Bug 1174463 for CVE-2020-15706",
"url": "https://bugzilla.suse.com/1174463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-15706"
},
{
"cve": "CVE-2020-15707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-15707"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-15707",
"url": "https://www.suse.com/security/cve/CVE-2020-15707"
},
{
"category": "external",
"summary": "SUSE Bug 1174570 for CVE-2020-15707",
"url": "https://bugzilla.suse.com/1174570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-15707"
},
{
"cve": "CVE-2020-25632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25632"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25632",
"url": "https://www.suse.com/security/cve/CVE-2020-25632"
},
{
"category": "external",
"summary": "SUSE Bug 1176711 for CVE-2020-25632",
"url": "https://bugzilla.suse.com/1176711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25632"
},
{
"cve": "CVE-2020-25647",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25647"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25647",
"url": "https://www.suse.com/security/cve/CVE-2020-25647"
},
{
"category": "external",
"summary": "SUSE Bug 1177883 for CVE-2020-25647",
"url": "https://bugzilla.suse.com/1177883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25647"
},
{
"cve": "CVE-2020-27749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27749"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27749",
"url": "https://www.suse.com/security/cve/CVE-2020-27749"
},
{
"category": "external",
"summary": "SUSE Bug 1179264 for CVE-2020-27749",
"url": "https://bugzilla.suse.com/1179264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-27749"
},
{
"cve": "CVE-2020-27779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27779"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27779",
"url": "https://www.suse.com/security/cve/CVE-2020-27779"
},
{
"category": "external",
"summary": "SUSE Bug 1179265 for CVE-2020-27779",
"url": "https://bugzilla.suse.com/1179265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-27779"
},
{
"cve": "CVE-2021-20225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20225"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20225",
"url": "https://www.suse.com/security/cve/CVE-2021-20225"
},
{
"category": "external",
"summary": "SUSE Bug 1182262 for CVE-2021-20225",
"url": "https://bugzilla.suse.com/1182262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-20225"
},
{
"cve": "CVE-2021-20233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20233"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20233",
"url": "https://www.suse.com/security/cve/CVE-2021-20233"
},
{
"category": "external",
"summary": "SUSE Bug 1182263 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1182263"
},
{
"category": "external",
"summary": "SUSE Bug 1183135 for CVE-2021-20233",
"url": "https://bugzilla.suse.com/1183135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:grub2-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x",
"openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-20233"
}
]
}
ghsa-r6r2-gvcm-979j
Vulnerability from github
Published
2022-05-24 17:43
Modified
2022-05-24 17:43
Severity ?
VLAI Severity ?
Details
A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
{
"affected": [],
"aliases": [
"CVE-2020-25632"
],
"database_specific": {
"cwe_ids": [
"CWE-416"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-03-03T17:15:00Z",
"severity": "HIGH"
},
"details": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GHSA-r6r2-gvcm-979j",
"modified": "2022-05-24T17:43:31Z",
"published": "2022-05-24T17:43:31Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20220325-0001"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
gsd-2020-25632
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-25632",
"description": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GSD-2020-25632",
"references": [
"https://www.suse.com/security/cve/CVE-2020-25632.html",
"https://www.debian.org/security/2021/dsa-4867",
"https://access.redhat.com/errata/RHSA-2021:3675",
"https://access.redhat.com/errata/RHSA-2021:2790",
"https://access.redhat.com/errata/RHSA-2021:2566",
"https://access.redhat.com/errata/RHSA-2021:1734",
"https://access.redhat.com/errata/RHSA-2021:0704",
"https://access.redhat.com/errata/RHSA-2021:0703",
"https://access.redhat.com/errata/RHSA-2021:0702",
"https://access.redhat.com/errata/RHSA-2021:0701",
"https://access.redhat.com/errata/RHSA-2021:0700",
"https://access.redhat.com/errata/RHSA-2021:0699",
"https://access.redhat.com/errata/RHSA-2021:0698",
"https://access.redhat.com/errata/RHSA-2021:0697",
"https://access.redhat.com/errata/RHSA-2021:0696",
"https://ubuntu.com/security/CVE-2020-25632",
"https://advisories.mageia.org/CVE-2020-25632.html",
"https://security.archlinux.org/CVE-2020-25632",
"https://linux.oracle.com/cve/CVE-2020-25632.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-25632"
],
"details": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"id": "GSD-2020-25632",
"modified": "2023-12-13T01:21:57.488876Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-25632",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "grub2",
"version": {
"version_data": [
{
"version_value": "grub 2.06"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-416"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"name": "FEDORA-2021-cab258a413",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"name": "GLSA-202104-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220325-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.06",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:8.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2020-25632"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
},
{
"lang": "en",
"value": "CWE-416"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"name": "FEDORA-2021-cab258a413",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"name": "GLSA-202104-05",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220325-0001/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.5,
"impactScore": 6.0
}
},
"lastModifiedDate": "2022-05-13T20:51Z",
"publishedDate": "2021-03-03T17:15Z"
}
}
}
fkie_cve-2020-25632
Vulnerability from fkie_nvd
Published
2021-03-03 17:15
Modified
2024-11-21 05:18
Severity ?
Summary
A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "01F8D62F-70BB-4718-A095-D68540C17EEA",
"versionEndExcluding": "2.06",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1C8D871B-AEA1-4407-AEE3-47EC782250FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "98381E61-F082-4302-B51F-5648884F998B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D99A687E-EAE6-417E-A88E-D0082BC194CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "7431ABC1-9252-419E-8CC1-311B41360078",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6897676D-53F9-45B3-B27F-7FF9A4C58D33",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "21690BAC-2129-4A33-9B48-1F3BF30072A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:8.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F2FF6D89-9361-45B9-ABCC-1A5E600BD63C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D5F7E11E-FB34-4467-8919-2B6BEAABF665",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B76AA310-FEC7-497F-AF04-C3EC1E76C4CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*",
"matchCriteriaId": "17F256A9-D3B9-4C72-B013-4EFD878BFEA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B09ACF2D-D83F-4A86-8185-9569605D8EE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E7CF3019-975D-40BB-A8A4-894E62BD3797",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability."
},
{
"lang": "es",
"value": "Se encontr\u00f3 un fallo en grub2 en versiones anteriores a 2.06.\u0026#xa0;La implementaci\u00f3n de rmmod permite la descarga de un m\u00f3dulo usado como dependencia sin comprobar si alg\u00fan otro m\u00f3dulo dependiente todav\u00eda est\u00e1 cargado, lo que conlleva a un escenario de uso de la memoria previamente liberada.\u0026#xa0;Esto podr\u00eda permitir una ejecuci\u00f3n de c\u00f3digo arbitraria o una omisi\u00f3n de las protecciones de Secure Boot.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema"
}
],
"id": "CVE-2020-25632",
"lastModified": "2024-11-21T05:18:17.340",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.5,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-03-03T17:15:11.660",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202104-05"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220325-0001/"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…