-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 02 Oct 2023 16:11:34 +0200
Source: grub2
Architecture: source
Version: 2.06-3~deb11u6
Distribution: bullseye-security
Urgency: medium
Maintainer: GRUB Maintainers <pkg-grub-devel@alioth-lists.debian.net>
Changed-By: Julian Andres Klode <jak@debian.org>
Changes:
 grub2 (2.06-3~deb11u6) bullseye-security; urgency=medium
 .
   [ Mate Kukri ]
   * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
     and may leak sensitive information into the GRUB pager.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
       label.patch:
       fs/ntfs: Fix an OOB read when parsing a volume label
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
       index-at.patch:
       fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
       entries-fr.patch:
       fs/ntfs: Fix an OOB read when parsing directory entries from resident and
       non-resident index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
       reside.patch:
       fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
       attribute
     - CVE-2023-4693
   * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
     overflow and may allow arbitrary code execution and secure boot bypass.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
       ATTRIBUTE_LIST-.patch:
       fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
       the $MFT file
     - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
       fs/ntfs: Make code more readable
     - CVE-2023-4692
 .
   [ Julian Andres Klode ]
   * Bump SBAT to grub,4
Checksums-Sha1:
 a5ef359c99c2ad7bd5dd5fb175e5b490b2764bf8 7121 grub2_2.06-3~deb11u6.dsc
 f12b176bb663cf9a21542b67aacfac1c6e688346 1097416 grub2_2.06-3~deb11u6.debian.tar.xz
 85004465edb866ece389f4f25f3b5694a3a3c45c 13925 grub2_2.06-3~deb11u6_source.buildinfo
Checksums-Sha256:
 e9a553c4f8a84d6b5a315ce55e2c0e0d7290af17a6039cf23b80b7788c3eb969 7121 grub2_2.06-3~deb11u6.dsc
 a3a619332acd5d996d89c73c7a6ad8bfbde3f3ecf55e8c7e358b2db7646eb108 1097416 grub2_2.06-3~deb11u6.debian.tar.xz
 64bfe457c79700d7a6391d8c7101539f338b7e08110edcecce21b9ed9ae2709e 13925 grub2_2.06-3~deb11u6_source.buildinfo
Files:
 714ceac7d1c623ba3442b28ca408d39f 7121 admin optional grub2_2.06-3~deb11u6.dsc
 cf1ebc72e0c5b225cb6915c9618a5990 1097416 admin optional grub2_2.06-3~deb11u6.debian.tar.xz
 46e3b4d76aa25be157c9f7fc19eba24e 13925 admin optional grub2_2.06-3~deb11u6_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Ov1i
-----END PGP SIGNATURE-----