-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 02 Oct 2023 16:11:34 +0200
Source: grub2
Binary: grub-common grub-common-dbgsym grub-efi grub-efi-arm grub-efi-arm-bin grub-efi-arm-dbg grub-mount-udeb grub-theme-starfield grub-uboot grub-uboot-bin grub-uboot-dbg grub2-common grub2-common-dbgsym
Architecture: armhf
Version: 2.06-13+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-06) <buildd_armhf-arm-ubc-06@buildd.debian.org>
Changed-By: Julian Andres Klode <jak@debian.org>
Description:
 grub-common - GRand Unified Bootloader (common files)
 grub-efi   - GRand Unified Bootloader, version 2 (dummy package)
 grub-efi-arm - GRand Unified Bootloader, version 2 (ARM UEFI version)
 grub-efi-arm-bin - GRand Unified Bootloader, version 2 (ARM UEFI modules)
 grub-efi-arm-dbg - GRand Unified Bootloader, version 2 (ARM UEFI debug files)
 grub-mount-udeb - export GRUB filesystems using FUSE (udeb)
 grub-theme-starfield - GRand Unified Bootloader, version 2 (starfield theme)
 grub-uboot - GRand Unified Bootloader, version 2 (ARM U-Boot version)
 grub-uboot-bin - GRand Unified Bootloader, version 2 (ARM U-Boot modules)
 grub-uboot-dbg - GRand Unified Bootloader, version 2 (ARM U-Boot debug files)
 grub2-common - GRand Unified Bootloader (common files for version 2)
Changes:
 grub2 (2.06-13+deb12u1) bookworm-security; urgency=medium
 .
   [ Mate Kukri ]
   * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
     and may leak sensitive information into the GRUB pager.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
       label.patch:
       fs/ntfs: Fix an OOB read when parsing a volume label
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
       index-at.patch:
       fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
       entries-fr.patch:
       fs/ntfs: Fix an OOB read when parsing directory entries from resident and
       non-resident index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
       reside.patch:
       fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
       attribute
     - CVE-2023-4693
   * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
     overflow and may allow arbitrary code execution and secure boot bypass.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
       ATTRIBUTE_LIST-.patch:
       fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
       the $MFT file
     - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
       fs/ntfs: Make code more readable
     - CVE-2023-4692
 .
   [ Julian Andres Klode ]
   * Bump SBAT to grub,4
Checksums-Sha1:
 99bc88651c1a6d1280a3d7590288198290f09bb2 10348740 grub-common-dbgsym_2.06-13+deb12u1_armhf.deb
 e915944f7911bbdcd0ee2ddca519f7330cbfdf01 2503676 grub-common_2.06-13+deb12u1_armhf.deb
 5f1d28120e2859f568fa9c653a65f0f46764b0a3 754888 grub-efi-arm-bin_2.06-13+deb12u1_armhf.deb
 f1ebc294d71e1f6672738b234760f65e24c889d5 2916828 grub-efi-arm-dbg_2.06-13+deb12u1_armhf.deb
 e9ec4f549afe6eb068dd3785845ca6f95bee2129 226164 grub-efi-arm_2.06-13+deb12u1_armhf.deb
 c0f6e1a484aee11e6736433dc758f6aab76487f8 182956 grub-efi_2.06-13+deb12u1_armhf.deb
 e383c2b02a336b43e16a58362e66c831993966d0 384820 grub-mount-udeb_2.06-13+deb12u1_armhf.udeb
 6f90a5b51c580534b9ac5a8d345f32801b9ffbbd 2336296 grub-theme-starfield_2.06-13+deb12u1_armhf.deb
 e9ea4e1d77909caa99a51123ce64ad4c7e674433 724588 grub-uboot-bin_2.06-13+deb12u1_armhf.deb
 d6b48d8bb44066e3142409d8eef8ad5d68395b77 2709628 grub-uboot-dbg_2.06-13+deb12u1_armhf.deb
 71d37ca842f7710efca0b79c752ebe495bdec9c7 226196 grub-uboot_2.06-13+deb12u1_armhf.deb
 713e6035a78fc3218a3e76f4245410dac2657c2a 1448892 grub2-common-dbgsym_2.06-13+deb12u1_armhf.deb
 48495aa88fc12bf74716add96a9cdc4eae4a1e74 753844 grub2-common_2.06-13+deb12u1_armhf.deb
 6da3cc50405029c54121561f8af93fa07096e7a2 13825 grub2_2.06-13+deb12u1_armhf-buildd.buildinfo
Checksums-Sha256:
 d8aa941217d98ed6161cb067a55262b91b4721d577b72443b4ae519a0900bf53 10348740 grub-common-dbgsym_2.06-13+deb12u1_armhf.deb
 27a47c3dba6aa913ee5e349000dfc7fad258df545bcc21a523e9e95e7feab565 2503676 grub-common_2.06-13+deb12u1_armhf.deb
 94e0c949c04ae3330c02584da152b8f77ef00a120f9e23a971017dbeb7c7dc3c 754888 grub-efi-arm-bin_2.06-13+deb12u1_armhf.deb
 7451bd468da511e53851d93b415b9d70e92a48cec63672beb2ae75bf8a0b752e 2916828 grub-efi-arm-dbg_2.06-13+deb12u1_armhf.deb
 ae0441c3031b1b798809a89c5683834ffbf44bf86f51951b72ab041ded4bdf61 226164 grub-efi-arm_2.06-13+deb12u1_armhf.deb
 741272a1166308990219010447e8d14cfebef57d70503f7e35bb0a932ceebd83 182956 grub-efi_2.06-13+deb12u1_armhf.deb
 a8172e44d9afd92044847a4bdefd27546607e8464b2eaf2adb02140b3602a33a 384820 grub-mount-udeb_2.06-13+deb12u1_armhf.udeb
 e9f235314654808a94d202dcc1f718d5680c6e592b823925d389da1b8796b3af 2336296 grub-theme-starfield_2.06-13+deb12u1_armhf.deb
 748c38bff04455b7a01bb24f204b5f207d905880c9cc5de2d3c0cc994f720429 724588 grub-uboot-bin_2.06-13+deb12u1_armhf.deb
 97d9d3571a3006ecc51d7a802caba3a99722dcba8fa92c467d8b7a4005305447 2709628 grub-uboot-dbg_2.06-13+deb12u1_armhf.deb
 874cbe940cfbd81877ed6fd260f18323e9ab05fb3c83092550d4ecc1f2855ac6 226196 grub-uboot_2.06-13+deb12u1_armhf.deb
 e82827e4cea71b4604e41a46d1027c3856961120af09d9da9cf69c5348c05990 1448892 grub2-common-dbgsym_2.06-13+deb12u1_armhf.deb
 dce443bb53a9b7dcbd48afede6b9636133d9ef9812ae51ffeb32974faf606824 753844 grub2-common_2.06-13+deb12u1_armhf.deb
 d3472a93f8a2f6f132d38b91c0056b6c9aecd75e2998006e21050419ee2a41d8 13825 grub2_2.06-13+deb12u1_armhf-buildd.buildinfo
Files:
 97fa2937fc874059832d93e12462e93a 10348740 debug optional grub-common-dbgsym_2.06-13+deb12u1_armhf.deb
 4e9479db4ced425407e98fb4638a2bc4 2503676 admin optional grub-common_2.06-13+deb12u1_armhf.deb
 a708409572c26094468a7e601befaa1c 754888 admin optional grub-efi-arm-bin_2.06-13+deb12u1_armhf.deb
 5528c65f13bc4a2846cc64069bf90de6 2916828 debug optional grub-efi-arm-dbg_2.06-13+deb12u1_armhf.deb
 a76adbcb23c3d3b250fac620401513df 226164 admin optional grub-efi-arm_2.06-13+deb12u1_armhf.deb
 7f8e98888785b228bf1914640cb94f3a 182956 admin optional grub-efi_2.06-13+deb12u1_armhf.deb
 518da9b933a33b5c24165f8908890ccf 384820 debian-installer optional grub-mount-udeb_2.06-13+deb12u1_armhf.udeb
 30979c3f577364e82efcda32b419b542 2336296 admin optional grub-theme-starfield_2.06-13+deb12u1_armhf.deb
 f7c212f0d497736f67c6950d09766a9d 724588 admin optional grub-uboot-bin_2.06-13+deb12u1_armhf.deb
 e12493fd57cd750ecd9b521058b8b8bc 2709628 debug optional grub-uboot-dbg_2.06-13+deb12u1_armhf.deb
 460b9de44be4ee3bf993d9edba1df8cd 226196 admin optional grub-uboot_2.06-13+deb12u1_armhf.deb
 dd46a698e37e42c88294fc7bf05a8ce3 1448892 debug optional grub2-common-dbgsym_2.06-13+deb12u1_armhf.deb
 59edf423d646e0aa5d1e6efdc136d812 753844 admin optional grub2-common_2.06-13+deb12u1_armhf.deb
 74627326e26ffb463987af81a07a3056 13825 admin optional grub2_2.06-13+deb12u1_armhf-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=5Nfd
-----END PGP SIGNATURE-----