Oracle9: ELSA-2022-9596: grub2 Important Security Update | LinuxSec...

Advisories

Oracle Linux Security Advisory ELSA-2022-9596

https://linux.oracle.com/errata/ELSA-2022-9596.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
grub2-common-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-efi-aa64-modules-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-efi-x64-2.06-27.0.6.el9_0.7.x86_64.rpm
grub2-efi-x64-cdboot-2.06-27.0.6.el9_0.7.x86_64.rpm
grub2-efi-x64-modules-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-pc-2.06-27.0.6.el9_0.7.x86_64.rpm
grub2-pc-modules-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-tools-2.06-27.0.6.el9_0.7.x86_64.rpm
grub2-tools-efi-2.06-27.0.6.el9_0.7.x86_64.rpm
grub2-tools-extra-2.06-27.0.6.el9_0.7.x86_64.rpm
grub2-tools-minimal-2.06-27.0.6.el9_0.7.x86_64.rpm

aarch64:
grub2-common-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-efi-aa64-2.06-27.0.6.el9_0.7.aarch64.rpm
grub2-efi-aa64-cdboot-2.06-27.0.6.el9_0.7.aarch64.rpm
grub2-efi-aa64-modules-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-efi-x64-modules-2.06-27.0.6.el9_0.7.noarch.rpm
grub2-tools-2.06-27.0.6.el9_0.7.aarch64.rpm
grub2-tools-extra-2.06-27.0.6.el9_0.7.aarch64.rpm
grub2-tools-minimal-2.06-27.0.6.el9_0.7.aarch64.rpm


SRPMS:
https://oss.oracle.com/ol9/SRPMS-updates/grub2-2.06-27.0.6.el9_0.7.src.rpm

Related CVEs:

CVE-2022-28737
CVE-2021-3696
CVE-2022-28734
CVE-2021-3695
CVE-2021-3697
CVE-2022-28733
CVE-2022-28735
CVE-2022-28736




Description of changes:

[2.06-27.0.6.el9_0.7]
- Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]

[2.06-27.0.5.el9_0.7]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- Update provided certificate version to 202204 [JIRA: OLDIS-16371]
- Various coverity fixes [JIRA: OLDIS-16371]
- bump SBAT generation
- Update bug url [Orabug: 34202300]
- Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
- Update signing certificate [JIRA: OLDIS-16371]
- fix SBAT data [JIRA: OLDIS-16371]
- Update requires [JIRA: OLDIS-16371]
- Rebuild for SecureBoot signatures [Orabug: 33801813]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- Put "with" in menuentry instead of "using" [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-27.el9_0.7]
- CVE fixes for 2022-06-07
- CVE-2022-28736 CVE-2022-28735 CVE-2022-28734 CVE-2022-28733
- CVE-2021-3697 CVE-2021-3696 CVE-2021-3695
- Resolves: #2089810

_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle9: ELSA-2022-9596: grub2 Important Security Update

Summary

Description of changes: [2.06-27.0.6.el9_0.7] - Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986] [2.06-27.0.5.el9_0.7] - Replaced bugzilla.oracle.com references [Orabug: 34202300] - Update provided certificate version to 202204 [JIRA: OLDIS-16371] - Various coverity fixes [JIRA: OLDIS-16371] - bump SBAT generation - Update bug url [Orabug: 34202300] - Revert provided certificate version back to 202102 [JIRA: OLDIS-16371] - Update signing certificate [JIRA: OLDIS-16371] - fix SBAT data [JIRA: OLDIS-16371] - Update requires [JIRA: OLDIS-16371] - Rebuild for SecureBoot signatures [Orabug: 33801813] - Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033] - Update Oracle SBAT data [Orabug: 32670033] - Use new signing certificate [Orabug: 32670033] - honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497] - set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597] - Update upstream references [Orabug: 26388226] - Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955] - Put "with" in menuentry instead of "using" [Orabug: 18504756] - Use different titles for UEK and RHCK kernels [Orabug: 18504756] [2.06-27.el9_0.7] - CVE fixes for 2022-06-07 - CVE-2022-28736 CVE-2022-28735 CVE-2022-28734 CVE-2022-28733 - CVE-2021-3697 CVE-2021-3696 CVE-2021-3695 - Resolves: #2089810

i386

x86_64

grub2-common-2.06-27.0.6.el9_0.7.noarch.rpm grub2-efi-aa64-modules-2.06-27.0.6.el9_0.7.noarch.rpm grub2-efi-x64-2.06-27.0.6.el9_0.7.x86_64.rpm grub2-efi-x64-cdboot-2.06-27.0.6.el9_0.7.x86_64.rpm grub2-efi-x64-modules-2.06-27.0.6.el9_0.7.noarch.rpm grub2-pc-2.06-27.0.6.el9_0.7.x86_64.rpm grub2-pc-modules-2.06-27.0.6.el9_0.7.noarch.rpm grub2-tools-2.06-27.0.6.el9_0.7.x86_64.rpm grub2-tools-efi-2.06-27.0.6.el9_0.7.x86_64.rpm grub2-tools-extra-2.06-27.0.6.el9_0.7.x86_64.rpm grub2-tools-minimal-2.06-27.0.6.el9_0.7.x86_64.rpm aarch64: grub2-common-2.06-27.0.6.el9_0.7.noarch.rpm grub2-efi-aa64-2.06-27.0.6.el9_0.7.aarch64.rpm grub2-efi-aa64-cdboot-2.06-27.0.6.el9_0.7.aarch64.rpm grub2-efi-aa64-modules-2.06-27.0.6.el9_0.7.noarch.rpm grub2-efi-x64-modules-2.06-27.0.6.el9_0.7.noarch.rpm grub2-tools-2.06-27.0.6.el9_0.7.aarch64.rpm grub2-tools-extra-2.06-27.0.6.el9_0.7.aarch64.rpm grub2-tools-minimal-2.06-27.0.6.el9_0.7.aarch64.rpm

SRPMS

https://oss.oracle.com/ol9/SRPMS-updates/grub2-2.06-27.0.6.el9_0.7.src.rpm

Severity
Related CVEs: CVE-2022-28737 CVE-2021-3696 CVE-2022-28734 CVE-2021-3695 CVE-2021-3697 CVE-2022-28733 CVE-2022-28735 CVE-2022-28736

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.