Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 38: FEDORA-2024-d7cbf23c5f Urgent Kernel Security Update Released

fedora
Calendar Grey March 21, 2024
Dist Fedora Esm H88
Critical security patch rolled out for Fedora 38 addressing local user exploitation in grub2. Update now to safeguard your system.
Security fix for CVE-2024-1048

Summary

The GRand Unified Bootloader (GRUB) is a highly configurable and

customizable bootloader with modular architecture. It supports a rich

variety of kernel formats, file systems, computer architectures and

hardware devices.

Update Information:

Security fix for CVE-2024-1048

Topics%20covered

Topics Covered

security advisory fedora update critical security fix local attack grub2

Change Log

* Wed Feb 7 2024 Nicolas Frayer - 2.06-116 - fs/xfs: Re-applied the XFS directory extent parsing patch - Resolves: #2259266 * Wed Feb 7 2024 Nicolas Frayer - 2.06-115 - grub-set-bootflag: Fix for CVE-2024-1048 - (CVE-2024-1048) - Resolves: #2256678

References


[ 1 ] Bug #2256827 - CVE-2024-1048 grub2: grub2-set-bootflag can be abused by local (pseudo-)users https://bugzilla.redhat.com/show_bug.cgi?id=2256827

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-c1fabee30e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: grub2
Product: Fedora 38
Version: 2.06
Release: 116.fc38
URL:
Summary: Bootloader with support for Linux, Multiboot and more

Topics%20covered

Topics Covered

security advisory fedora update critical security fix local attack grub2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here