-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 02 Oct 2023 16:11:34 +0200
Source: grub2
Binary: grub-common grub-common-dbgsym grub-efi grub-efi-arm64 grub-efi-arm64-bin grub-efi-arm64-dbg grub-efi-arm64-signed-template grub-mount-udeb grub-theme-starfield grub2-common grub2-common-dbgsym
Architecture: arm64
Version: 2.06-13+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-arm-01) <buildd_arm64-arm-arm-01@buildd.debian.org>
Changed-By: Julian Andres Klode <jak@debian.org>
Description:
 grub-common - GRand Unified Bootloader (common files)
 grub-efi   - GRand Unified Bootloader, version 2 (dummy package)
 grub-efi-arm64 - GRand Unified Bootloader, version 2 (ARM64 UEFI version)
 grub-efi-arm64-bin - GRand Unified Bootloader, version 2 (ARM64 UEFI modules)
 grub-efi-arm64-dbg - GRand Unified Bootloader, version 2 (ARM64 UEFI debug files)
 grub-efi-arm64-signed-template - GRand Unified Bootloader, version 2 (ARM64 UEFI signing template)
 grub-mount-udeb - export GRUB filesystems using FUSE (udeb)
 grub-theme-starfield - GRand Unified Bootloader, version 2 (starfield theme)
 grub2-common - GRand Unified Bootloader (common files for version 2)
Changes:
 grub2 (2.06-13+deb12u1) bookworm-security; urgency=medium
 .
   [ Mate Kukri ]
   * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
     and may leak sensitive information into the GRUB pager.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
       label.patch:
       fs/ntfs: Fix an OOB read when parsing a volume label
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
       index-at.patch:
       fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
       entries-fr.patch:
       fs/ntfs: Fix an OOB read when parsing directory entries from resident and
       non-resident index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
       reside.patch:
       fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
       attribute
     - CVE-2023-4693
   * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
     overflow and may allow arbitrary code execution and secure boot bypass.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
       ATTRIBUTE_LIST-.patch:
       fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
       the $MFT file
     - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
       fs/ntfs: Make code more readable
     - CVE-2023-4692
 .
   [ Julian Andres Klode ]
   * Bump SBAT to grub,4
Checksums-Sha1:
 876cb3dc5b573abda5abbc12b5adfad56334d2ee 11417956 grub-common-dbgsym_2.06-13+deb12u1_arm64.deb
 5132dc1fe28373ea838bbf363672e9a5cf8dff07 2694924 grub-common_2.06-13+deb12u1_arm64.deb
 733b1dcf3ec6ba39f5c05c112ad621b5751c5246 1401860 grub-efi-arm64-bin_2.06-13+deb12u1_arm64.deb
 bc1583bc42a605d598594e28eed143077a9c330d 2839072 grub-efi-arm64-dbg_2.06-13+deb12u1_arm64.deb
 ee684fedf2acc237375708e2a5e0c63a4f01d04a 184084 grub-efi-arm64-signed-template_2.06-13+deb12u1_arm64.deb
 de350eb021c264f2af51aaa83be2b5be8f7b2260 45580 grub-efi-arm64_2.06-13+deb12u1_arm64.deb
 d79d65b062452579ae04c1b5c18fad074afecf77 2388 grub-efi_2.06-13+deb12u1_arm64.deb
 7313699ea4e309f49f623221bcc8f6b37e99fcf3 405004 grub-mount-udeb_2.06-13+deb12u1_arm64.udeb
 f1b403d6d446ea37de30d3f93fe8cf27dd1c6a0e 2155240 grub-theme-starfield_2.06-13+deb12u1_arm64.deb
 f55e9f2a985c1aebe599a6a1962d10269b516b28 1422572 grub2-common-dbgsym_2.06-13+deb12u1_arm64.deb
 edf883bcfaa855d794251326e39a800228b4de34 579576 grub2-common_2.06-13+deb12u1_arm64.deb
 5bec6ae35accd707e4f2a655ea44452679ede886 13502 grub2_2.06-13+deb12u1_arm64-buildd.buildinfo
Checksums-Sha256:
 ad55750a3cbcff046918e1eee30d575548c8d2d0e2093b0aa3bc43d77c9bd481 11417956 grub-common-dbgsym_2.06-13+deb12u1_arm64.deb
 f4caffaf8df1f22ff9c393938b4ca4530f4e6010379bb26a952d7f92ba36d38d 2694924 grub-common_2.06-13+deb12u1_arm64.deb
 8165aaada75cc5f8a41281a2f1674b26740e7ac737db56c27deaa2560817abc1 1401860 grub-efi-arm64-bin_2.06-13+deb12u1_arm64.deb
 cf64997de7b618cb5f3f8cfc5ee916d88dd2032dc5a659fdf4921301184e18dc 2839072 grub-efi-arm64-dbg_2.06-13+deb12u1_arm64.deb
 b72329d00a9cf4b7ceb0c512be178fd37c5654318bf98380f64e245b33440b3e 184084 grub-efi-arm64-signed-template_2.06-13+deb12u1_arm64.deb
 0710b08b92abd5429e1c27ff28b341fcc2c72640b4be038165eae480b63a6d21 45580 grub-efi-arm64_2.06-13+deb12u1_arm64.deb
 42ee6c08df39c005a763cf3b3872ef32d222fa9fba2bc307ccbdb50c6b89e0b7 2388 grub-efi_2.06-13+deb12u1_arm64.deb
 3395fe9c7239bb43d1bd13cfd737f98a370561409f736cd774ceda0d2d8e2d36 405004 grub-mount-udeb_2.06-13+deb12u1_arm64.udeb
 e8ac23572ca25dd029ae32f147d946720fece2cbdb3e9d6bfc65aa69adbaa2b5 2155240 grub-theme-starfield_2.06-13+deb12u1_arm64.deb
 f95cc2200623ec2affeebfabca2d2d7047a435f082d47be61d6fb27d57daddfb 1422572 grub2-common-dbgsym_2.06-13+deb12u1_arm64.deb
 dcd5c2eec01c47d5c2bccd5d63b2fd5b389a1bda287cc0d3c878ac392fa3a0f7 579576 grub2-common_2.06-13+deb12u1_arm64.deb
 0c3197ef2e196258d61ff61df3a62f6219bb84a3c86ced8855e76ea208830d0a 13502 grub2_2.06-13+deb12u1_arm64-buildd.buildinfo
Files:
 f9a599c93fa9a8bc6804ed81f3bb1b13 11417956 debug optional grub-common-dbgsym_2.06-13+deb12u1_arm64.deb
 080224ed0c5cba29024b373699c0358c 2694924 admin optional grub-common_2.06-13+deb12u1_arm64.deb
 20dca7b04f1810c9eae585634cd3a86f 1401860 admin optional grub-efi-arm64-bin_2.06-13+deb12u1_arm64.deb
 781e2575ed3c42bab47da91c4d97469f 2839072 debug optional grub-efi-arm64-dbg_2.06-13+deb12u1_arm64.deb
 767c76e7c7cd468644750937ceb37e11 184084 admin optional grub-efi-arm64-signed-template_2.06-13+deb12u1_arm64.deb
 0befa42e97c5f9a6d8aa92ea47c8e42e 45580 admin optional grub-efi-arm64_2.06-13+deb12u1_arm64.deb
 72d7f4121a2e1efa57a4ddd5e971db06 2388 admin optional grub-efi_2.06-13+deb12u1_arm64.deb
 cf0dce671c86e1949fe01d08e029a4ca 405004 debian-installer optional grub-mount-udeb_2.06-13+deb12u1_arm64.udeb
 4b0ce86ac8aa0bf980aecd6adbf5cbc9 2155240 admin optional grub-theme-starfield_2.06-13+deb12u1_arm64.deb
 018e2e8027cded05cf1c96333ff85665 1422572 debug optional grub2-common-dbgsym_2.06-13+deb12u1_arm64.deb
 03a09c125bc4dd6e18b498e6e0ea8989 579576 admin optional grub2-common_2.06-13+deb12u1_arm64.deb
 d5f647bfc2f106a3452094725e7299dd 13502 admin optional grub2_2.06-13+deb12u1_arm64-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=lT3F
-----END PGP SIGNATURE-----