grub2-unsigned 2.06-2ubuntu17.2 source package in Ubuntu

Changelog

grub2-unsigned (2.06-2ubuntu17.2) lunar; urgency=high

  * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
    and may leak sensitive information into the GRUB pager.
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
      label.patch:
      fs/ntfs: Fix an OOB read when parsing a volume label
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
      index-at.patch:
      fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
      entries-fr.patch:
      fs/ntfs: Fix an OOB read when parsing directory entries from resident and
      non-resident index attributes
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
      reside.patch:
      fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
      attribute
    - CVE-2023-4693
  * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
    overflow and may allow arbitrary code execution and secure boot bypass.
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
      ATTRIBUTE_LIST-.patch:
      fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
      the $MFT file
    - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
      fs/ntfs: Make code more readable
    - CVE-2023-4692
  * efi/fdt: Apply device tree fixups directly after loading
    - add debian/patches/fdt-fixup-after-load.patch
    - LP: #2028931
  * Source package generated from src:grub2 using make -f ./debian/rules
    generate-grub2-unsigned

 -- Mate Kukri <email address hidden>  Mon, 02 Oct 2023 15:25:43 +0100

Upload details

Uploaded by:
Mate Kukri
Uploaded to:
Lunar
Original maintainer:
Ubuntu Developers
Architectures:
any-amd64 any-arm64 i386 kopensolaris-i386
Section:
admin
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Lunar updates main admin
Lunar security main admin

Builds

Lunar: [FULLYBUILT] amd64 [FULLYBUILT] arm64 [FULLYBUILT] i386

Downloads

File Size SHA-256 Checksum
grub2-unsigned_2.06.orig.tar.xz 6.3 MiB b79ea44af91b93d17cd3fe80bdae6ed43770678a9a5ae192ccea803ebb657ee1
grub2-unsigned_2.06-2ubuntu17.2.debian.tar.xz 1.2 MiB d43746d8c9b3f9666b211837797ce44d9d3f294762b6c3b2e8740b6ae8367abc
grub2-unsigned_2.06-2ubuntu17.2.dsc 3.2 KiB f403d10d92a724c1a66a5af2f4e5abd0899f3d9e07625471b977e22ac1356e86

View changes file

Binary packages built by this source

grub-efi-amd64: GRand Unified Bootloader, version 2 (EFI-AMD64 version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with the EFI-AMD64 architecture, as used by Intel Macs (unless a BIOS
 interface has been activated). Installing this package indicates that this
 version of GRUB should be the active boot loader.

grub-efi-amd64-bin: GRand Unified Bootloader, version 2 (EFI-AMD64 modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use with the
 EFI-AMD64 architecture, as used by Intel Macs (unless a BIOS interface has
 been activated). It can be installed in parallel with other flavours, but
 will not automatically install GRUB as the active boot loader nor
 automatically update grub.cfg on upgrade unless grub-efi-amd64 is also
 installed.

grub-efi-amd64-dbg: GRand Unified Bootloader, version 2 (EFI-AMD64 debug files)

 This package contains debugging files for grub-efi-amd64-bin. You only
 need these if you are trying to debug GRUB using its GDB stub.

grub-efi-arm64: GRand Unified Bootloader, version 2 (ARM64 UEFI version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use on ARM64 systems with UEFI. Installing this package indicates that
 this version of GRUB should be the active boot loader.

grub-efi-arm64-bin: GRand Unified Bootloader, version 2 (ARM64 UEFI modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use on ARM64
 systems with UEFI. It can be installed in parallel with other flavours,
 but will not automatically install GRUB as the active boot loader nor
 automatically update grub.cfg on upgrade unless grub-efi-arm64 is also
 installed.

grub-efi-arm64-dbg: GRand Unified Bootloader, version 2 (ARM64 UEFI debug files)

 This package contains debugging files for grub-efi-arm64-bin. You only
 need these if you are trying to debug GRUB using its GDB stub.