Ubuntu 4992-1: GRUB 2 vulnerabilities
Summary
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.10: grub-efi-amd64-bin 2.04-1ubuntu44.2 grub-efi-amd64-signed 1.167.2+2.04-1ubuntu44.2 grub-efi-arm64-bin 2.04-1ubuntu44.2 grub-efi-arm64-signed 1.167.2+2.04-1ubuntu44.2 Ubuntu 20.04 LTS: grub-efi-amd64-bin 2.04-1ubuntu44.2 grub-efi-amd64-signed 1.167.2+2.04-1ubuntu44.2 grub-efi-arm64-bin 2.04-1ubuntu44.2 grub-efi-arm64-signed 1.167.2+2.04-1ubuntu44.2 Ubuntu 18.04 LTS: grub-efi-amd64-bin 2.04-1ubuntu44.1.2 grub-efi-amd64-signed 1.167~18.04.5+2.04-1ubuntu44.1.2 grub-efi-arm64-bin 2.04-1ubuntu44.1.2 grub-efi-arm64-signed 1.167~18.04.5+2.04-1ubuntu44.1.2 After a standard system update you need to reboot your computer to make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-4992-1
CVE-2020-14372, CVE-2020-25632, CVE-2020-27749,
CVE-2020-27779, CVE-2021-20225, CVE-2021-20233,
https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/GRUB2SecureBootBypass2021
Package Information
https://launchpad.net/ubuntu/+source/grub2-signed/1.167.2 https://launchpad.net/ubuntu/+source/grub2-unsigned/2.04-1ubuntu44.2 https://launchpad.net/ubuntu/+source/grub2-signed/1.167.2 https://launchpad.net/ubuntu/+source/grub2-unsigned/2.04-1ubuntu44.2 https://launchpad.net/ubuntu/+source/grub2-signed/1.167~18.04.5 https://launchpad.net/ubuntu/+source/grub2-unsigned/2.04-1ubuntu44.1.2