Fedora 38: 2024-01f402fae5 moderate: grub2 out-of-bounds issue
fedora
May 3, 2024
Security fix for CVE-2023-4692 Security fix for CVE-2023-4693 Fri Mar 08 2024 Nicolas Frayer nfrayer@redhat.com - 2.06-118 fs/xfs: Handle non-continuous data blocks in directory ex...
Summary
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
Update Information:
Security fix for CVE-2023-4692 Security fix for CVE-2023-4693 Fri Mar 08 2024 Nicolas Frayer nfrayer@redhat.com - 2.06-118 fs/xfs: Handle non-continuous data blocks in directory extents Related: #2254370 Fri Mar 08 2024 Nicolas Frayer nfrayer@redhat.com - 2.06-117 GRUB2 NTFS driver vulnerabilities (CVE-2023-4692) (CVE-2023-4693) Resolves: #2236613 Resolves: #2241978 Resolves: #2241976 Resolves: #2238343
Topics Covered
Change Log
* Fri Mar 8 2024 Nicolas Frayer
References
[ 1 ] Bug #2236613 - CVE-2023-4692 grub2: Out-of-bounds write at fs/ntfs.c may lead to unsigned code execution
https://bugzilla.redhat.com/show_bug.cgi?id=2236613
[ 2 ] Bug #2238343 - CVE-2023-4693 grub2: out-of-bounds read at fs/ntfs.c
https://bugzilla.redhat.com/show_bug.cgi?id=2238343
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-01f402fae5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Name: grub2
Product: Fedora 38
Version: 2.06
Release: 118.fc38
Summary: Bootloader with support for Linux, Multiboot and more
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!