-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 02 Oct 2023 16:11:34 +0200
Source: grub2
Binary: grub-common grub-common-dbgsym grub-mount-udeb
Architecture: s390x
Version: 2.06-3~deb11u6
Distribution: bullseye-security
Urgency: medium
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Julian Andres Klode <jak@debian.org>
Description:
 grub-common - GRand Unified Bootloader (common files)
 grub-mount-udeb - export GRUB filesystems using FUSE (udeb)
Changes:
 grub2 (2.06-3~deb11u6) bullseye-security; urgency=medium
 .
   [ Mate Kukri ]
   * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
     and may leak sensitive information into the GRUB pager.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
       label.patch:
       fs/ntfs: Fix an OOB read when parsing a volume label
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
       index-at.patch:
       fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
       entries-fr.patch:
       fs/ntfs: Fix an OOB read when parsing directory entries from resident and
       non-resident index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
       reside.patch:
       fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
       attribute
     - CVE-2023-4693
   * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
     overflow and may allow arbitrary code execution and secure boot bypass.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
       ATTRIBUTE_LIST-.patch:
       fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
       the $MFT file
     - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
       fs/ntfs: Make code more readable
     - CVE-2023-4692
 .
   [ Julian Andres Klode ]
   * Bump SBAT to grub,4
Checksums-Sha1:
 8fc6ee36be8b9ae5e06d5c6b23f79fa38e1387bc 10817512 grub-common-dbgsym_2.06-3~deb11u6_s390x.deb
 d0916a2ba33a4738b852ffaf35cf8880b1c57335 2685468 grub-common_2.06-3~deb11u6_s390x.deb
 f116b8751d7da8027bef98f18421e3a78f6ca5e3 395520 grub-mount-udeb_2.06-3~deb11u6_s390x.udeb
 7376e53906820e8e69c13ffa98969b24fe8fc241 11260 grub2_2.06-3~deb11u6_s390x-buildd.buildinfo
Checksums-Sha256:
 4be2650c43421d9764c2fa65aaf53d64652212912a3385649ed2020b9fa9a982 10817512 grub-common-dbgsym_2.06-3~deb11u6_s390x.deb
 fd6719e53898ee1412a263b9f8173766b1a8722a25c7a8a35fd2612d66e0ea08 2685468 grub-common_2.06-3~deb11u6_s390x.deb
 965d371831add0661436cab6706d914437d88bbace3b97b379ed2822c1853512 395520 grub-mount-udeb_2.06-3~deb11u6_s390x.udeb
 00c1d60e346fe078ca00a122dfca45df1cdc3d113366d6f6a3e01b6dea88d6ff 11260 grub2_2.06-3~deb11u6_s390x-buildd.buildinfo
Files:
 f52a51251e8274ea092aedea3820f8cc 10817512 debug optional grub-common-dbgsym_2.06-3~deb11u6_s390x.deb
 757daa4ac21e0c34d7cd0fab04d64294 2685468 admin optional grub-common_2.06-3~deb11u6_s390x.deb
 7a3ab8eb69c5614c204b4831daaa03c4 395520 debian-installer optional grub-mount-udeb_2.06-3~deb11u6_s390x.udeb
 f9ad8ba552e15c009773a2de5fe1d3d0 11260 admin optional grub2_2.06-3~deb11u6_s390x-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=eoQ6
-----END PGP SIGNATURE-----