security advisorymoderatefedora
Security fix for CVE-2023-4692 Security fix for CVE-2023-4693 Fri Mar 08 2024 Nicolas Frayer This email address is being protected from spambots. You need JavaScript enabled to view it. - 2.06-118 fs/xfs: Handle non-continuous data blocks in directory extents Related: #2254370. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-01f402fae5 2024-05-03 01:33:51.377526 -------------------------------------------------------------------------------- Name : grub2 Product : Fedora 38 Version : 2.06 Release : 118.fc38 URL : http://www.gnu.org/software/grub/ Summary : Bootloader with support for Linux, Multiboot and more Description : The GRand Unified Bootloader (GRUB) is a highly configurable and customizable bootloader with modular architecture. It supports a rich variety of kernel formats, file systems, computer architectures and hardware devices. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2023-4692 Security fix for CVE-2023-4693 Fri Mar 08 2024 Nicolas Frayer This email address is being protected from spambots. You need JavaScript enabled to view it. - 2.06-118 fs/xfs: Handle non-continuous data blocks in directory extents Related: #2254370 Fri Mar 08 2024 Nicolas Frayer This email address is being protected from spambots. You need JavaScript enabled to view it. - 2.06-117 GRUB2 NTFS driver vulnerabilities (CVE-2023-4692) (CVE-2023-4693) Resolves: #2236613 Resolves: #2241978 Resolves: #2241976 Resolves: #2238343 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 8 2024 Nicolas Frayer - 2.06-118 - fs/xfs: Handle non-continuous data blocks in directory extents - Related: #2254370 * Fri Mar 8 2024 Nicolas Frayer - 2.06-117 - GRUB2 NTFS driver vulnerabilities - (CVE-2023-4692) - (CVE-2023-4693) - Resolves: #2236613 - Resolves: #2241978 - Resolves: #2241976 - Resolves: #2238343 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2236613 - CVE-2023-4692 grub2: Out-of-bounds write at fs/ntfs.cmay lead to unsigned code execution https://bugzilla.redhat.com/show_bug.cgi?id=2236613 [ 2 ] Bug #2238343 - CVE-2023-4693 grub2: out-of-bounds read at fs/ntfs.c https://bugzilla.redhat.com/show_bug.cgi?id=2238343 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-01f402fae5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Fedora 38's latest update fixes GRUB NTFS driver problems, tackling security vulnerabilities for improved safety.. Fedora 38, GRUB2, Security Fix, NTFS Driver, Out-of-Bounds. . LinuxSecurity.com Team
May 03, 2024
Fedora
Refine advisories
