-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 02 Oct 2023 16:11:34 +0200
Source: grub2
Binary: grub-common grub-common-dbgsym grub-efi grub-efi-arm grub-efi-arm-bin grub-efi-arm-dbg grub-mount-udeb grub-theme-starfield grub-uboot grub-uboot-bin grub-uboot-dbg grub2-common grub2-common-dbgsym
Architecture: armel
Version: 2.06-13+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-06) <buildd_armhf-arm-ubc-06@buildd.debian.org>
Changed-By: Julian Andres Klode <jak@debian.org>
Description:
 grub-common - GRand Unified Bootloader (common files)
 grub-efi   - GRand Unified Bootloader, version 2 (dummy package)
 grub-efi-arm - GRand Unified Bootloader, version 2 (ARM UEFI version)
 grub-efi-arm-bin - GRand Unified Bootloader, version 2 (ARM UEFI modules)
 grub-efi-arm-dbg - GRand Unified Bootloader, version 2 (ARM UEFI debug files)
 grub-mount-udeb - export GRUB filesystems using FUSE (udeb)
 grub-theme-starfield - GRand Unified Bootloader, version 2 (starfield theme)
 grub-uboot - GRand Unified Bootloader, version 2 (ARM U-Boot version)
 grub-uboot-bin - GRand Unified Bootloader, version 2 (ARM U-Boot modules)
 grub-uboot-dbg - GRand Unified Bootloader, version 2 (ARM U-Boot debug files)
 grub2-common - GRand Unified Bootloader (common files for version 2)
Changes:
 grub2 (2.06-13+deb12u1) bookworm-security; urgency=medium
 .
   [ Mate Kukri ]
   * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
     and may leak sensitive information into the GRUB pager.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
       label.patch:
       fs/ntfs: Fix an OOB read when parsing a volume label
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
       index-at.patch:
       fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
       entries-fr.patch:
       fs/ntfs: Fix an OOB read when parsing directory entries from resident and
       non-resident index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
       reside.patch:
       fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
       attribute
     - CVE-2023-4693
   * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
     overflow and may allow arbitrary code execution and secure boot bypass.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
       ATTRIBUTE_LIST-.patch:
       fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
       the $MFT file
     - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
       fs/ntfs: Make code more readable
     - CVE-2023-4692
 .
   [ Julian Andres Klode ]
   * Bump SBAT to grub,4
Checksums-Sha1:
 5f4f9299be9a33901e1283f2b897d055b081bc05 10211092 grub-common-dbgsym_2.06-13+deb12u1_armel.deb
 968ddc5b51694b47e3871acfc682c5a2898cb169 2492912 grub-common_2.06-13+deb12u1_armel.deb
 5adb1b54ab34b1dff1e34580ec292ca8174f37da 755832 grub-efi-arm-bin_2.06-13+deb12u1_armel.deb
 98c1a1483d5a7c2a80f7485e033c58fdd0c548e0 2896660 grub-efi-arm-dbg_2.06-13+deb12u1_armel.deb
 7a162d2204f0070324aa2aacb94a25f118f4aa74 226168 grub-efi-arm_2.06-13+deb12u1_armel.deb
 581a8c9ddec98ff525585fda1423e462e7780c62 182960 grub-efi_2.06-13+deb12u1_armel.deb
 5076f062c94e578a7a672e42e38c36176c21ebfe 383536 grub-mount-udeb_2.06-13+deb12u1_armel.udeb
 a8c59d697b1b31a5c8d1805f6bcb3138181a89e4 2336296 grub-theme-starfield_2.06-13+deb12u1_armel.deb
 37dab91b457eba3fa40e7ef0bd98c9bdf59bf410 725604 grub-uboot-bin_2.06-13+deb12u1_armel.deb
 01ab8ea3237672a7bc351dd45e909d6c825f7072 2688492 grub-uboot-dbg_2.06-13+deb12u1_armel.deb
 801c0ce7d3c1f237f87df2bb43e65e625e2732a0 226172 grub-uboot_2.06-13+deb12u1_armel.deb
 d46a7cf6ddbf103d901f7f4e094951009979d792 1432152 grub2-common-dbgsym_2.06-13+deb12u1_armel.deb
 12e29f25437affa8506a9359c5141ede83dbd90e 753376 grub2-common_2.06-13+deb12u1_armel.deb
 cd8adb14fb98266b38dfa436f7de08c29200aefd 13823 grub2_2.06-13+deb12u1_armel-buildd.buildinfo
Checksums-Sha256:
 44b206bce80931d42fccd79d5840bcdea7e9c64955dd6048ede6e480756d079f 10211092 grub-common-dbgsym_2.06-13+deb12u1_armel.deb
 c9a8abf06171f7f74c268b5825767f350e76a10abe422cd74fe76d9d4fc51b0a 2492912 grub-common_2.06-13+deb12u1_armel.deb
 6fbeb78e93ea16b02f43b0f6a10f8905b3fd14bb8c85527a5e1cfefaad75014a 755832 grub-efi-arm-bin_2.06-13+deb12u1_armel.deb
 429cbe6352638d7ce3c091d55046e28e385fd8d204192a9ca860df9bb310f91d 2896660 grub-efi-arm-dbg_2.06-13+deb12u1_armel.deb
 2d5aebaaaf84a8a3bd7602da51a69ae32fa756b4651a23abb9808be6ea857d0b 226168 grub-efi-arm_2.06-13+deb12u1_armel.deb
 831e925fc576d7562c78e2ac9371d8ac39ee76908b878498fd11fe91946ecf2e 182960 grub-efi_2.06-13+deb12u1_armel.deb
 9607f6b2b1c7b00c2c75e453e665f2853c1224b829e15de70c649253882cdd7d 383536 grub-mount-udeb_2.06-13+deb12u1_armel.udeb
 47e8b6d9fedbc4d98f154a8d4700eba7e217da6c36b62b439b8da211cd0ea8b0 2336296 grub-theme-starfield_2.06-13+deb12u1_armel.deb
 09fe3f3849568e245e06096e20a1c8135b634a7f1cd684d55b4dc6a64182a266 725604 grub-uboot-bin_2.06-13+deb12u1_armel.deb
 87821241b96629a0e13722222301859b868ddada40338a37b909292c68b5c8ee 2688492 grub-uboot-dbg_2.06-13+deb12u1_armel.deb
 1809f8bc25a437c3a7c4bb1600dd666be1ddda0e07805c8abbbb2f28df06f61c 226172 grub-uboot_2.06-13+deb12u1_armel.deb
 ceae3dfe72e21a5a841c936877968870fc677600335abe764130b0a7c691242d 1432152 grub2-common-dbgsym_2.06-13+deb12u1_armel.deb
 9d6d3a8bb3620473819496cce2cb313c5a7406388beb84b4411bceed9fedf622 753376 grub2-common_2.06-13+deb12u1_armel.deb
 5d9de00b5131d2f5fffe260c879f4d14a66568009056387b5d4fcfca24a61ea9 13823 grub2_2.06-13+deb12u1_armel-buildd.buildinfo
Files:
 db2a9c75838e6bd75f682da102b1a19a 10211092 debug optional grub-common-dbgsym_2.06-13+deb12u1_armel.deb
 091e1877ee56b34f91d9dd36cb387055 2492912 admin optional grub-common_2.06-13+deb12u1_armel.deb
 4d2470cb7a2c259a68291ed595e96f42 755832 admin optional grub-efi-arm-bin_2.06-13+deb12u1_armel.deb
 8c7a147493d74996d7eb950af93f06df 2896660 debug optional grub-efi-arm-dbg_2.06-13+deb12u1_armel.deb
 1dc8fcc34be9a2523e3e12148836f228 226168 admin optional grub-efi-arm_2.06-13+deb12u1_armel.deb
 d3b1259755aeac768f19b065582a2c4b 182960 admin optional grub-efi_2.06-13+deb12u1_armel.deb
 6e9fe3dc8b3a4859c26aa905803caa5f 383536 debian-installer optional grub-mount-udeb_2.06-13+deb12u1_armel.udeb
 86a7ce9a9caf86d4497c60ed1795ce0b 2336296 admin optional grub-theme-starfield_2.06-13+deb12u1_armel.deb
 80b21436a697ae4b8c6f37c270f541f9 725604 admin optional grub-uboot-bin_2.06-13+deb12u1_armel.deb
 f7baee49c6d82f14098c694758e18d3d 2688492 debug optional grub-uboot-dbg_2.06-13+deb12u1_armel.deb
 3f9d00241868ee76bb1723307c98fe0c 226172 admin optional grub-uboot_2.06-13+deb12u1_armel.deb
 6ee6e372c6b4ff33d4fe55a9e7303d1c 1432152 debug optional grub2-common-dbgsym_2.06-13+deb12u1_armel.deb
 971d998e23f9be882b3e17bd0ba755cb 753376 admin optional grub2-common_2.06-13+deb12u1_armel.deb
 9af57647f11b3b18ef6a2c01ce6a0f29 13823 admin optional grub2_2.06-13+deb12u1_armel-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=MPFt
-----END PGP SIGNATURE-----