-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 02 Oct 2023 16:11:34 +0200 Source: grub2 Binary: grub-common grub-common-dbgsym grub-mount-udeb Architecture: mips64el Version: 2.06-13+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: mipsel Build Daemon (mipsel-osuosl-03) Changed-By: Julian Andres Klode Description: grub-common - GRand Unified Bootloader (common files) grub-mount-udeb - export GRUB filesystems using FUSE (udeb) Changes: grub2 (2.06-13+deb12u1) bookworm-security; urgency=medium . [ Mate Kukri ] * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write and may leak sensitive information into the GRUB pager. - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume- label.patch: fs/ntfs: Fix an OOB read when parsing a volume label - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for- index-at.patch: fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory- entries-fr.patch: fs/ntfs: Fix an OOB read when parsing directory entries from resident and non-resident index attributes - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe- reside.patch: fs/ntfs: Fix an OOB read when reading data from the resident $DATA + attribute - CVE-2023-4693 * SECURITY UPDATE: Crafted file system images can cause heap-based buffer overflow and may allow arbitrary code execution and secure boot bypass. - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the- ATTRIBUTE_LIST-.patch: fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for the $MFT file - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch fs/ntfs: Make code more readable - CVE-2023-4692 . [ Julian Andres Klode ] * Bump SBAT to grub,4 Checksums-Sha1: a8a098589b33c055a6615f46c6b8628eb4088d02 10741668 grub-common-dbgsym_2.06-13+deb12u1_mips64el.deb 962db0c8e25134fae9f3b34320588e399c3ed6dd 2826084 grub-common_2.06-13+deb12u1_mips64el.deb 1d629dc46e0c6dd7eece1264a1afd41606a8e9c1 412148 grub-mount-udeb_2.06-13+deb12u1_mips64el.udeb fe3417a04f9a79fd25760db8ab80f2567f524706 10686 grub2_2.06-13+deb12u1_mips64el-buildd.buildinfo Checksums-Sha256: fd2e39346a66679efb88193ec81e4d78e885a6c2df63f62383268278d4ac3927 10741668 grub-common-dbgsym_2.06-13+deb12u1_mips64el.deb 9978b51d04b4d7eb59c22d71df7e27930dee362ac967cb6021ec744bddd9e4be 2826084 grub-common_2.06-13+deb12u1_mips64el.deb a484b0667e2f49d484c489d6f384ec67a812763625d4fc5d83d46c2a331fafc6 412148 grub-mount-udeb_2.06-13+deb12u1_mips64el.udeb ba3979fdcce8b3ae2a9601631c9bf88fb22581478a0a3b09bc15295afed5dd00 10686 grub2_2.06-13+deb12u1_mips64el-buildd.buildinfo Files: f90fb524e889211a9fbcd941dab2aa12 10741668 debug optional grub-common-dbgsym_2.06-13+deb12u1_mips64el.deb 7e4d154d888b318f40193dea77fca1ee 2826084 admin optional grub-common_2.06-13+deb12u1_mips64el.deb 866356f4cb082b4ac297ffb56be8f280 412148 debian-installer optional grub-mount-udeb_2.06-13+deb12u1_mips64el.udeb d24683ec57cf20c963037f11f926e527 10686 admin optional grub2_2.06-13+deb12u1_mips64el-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXUZVEjohYGA7PDpMojl408mCs9YFAmUcUi4ACgkQojl408mC s9aaUA/+IU1AspCMpYmlWqdWoGrzSISLxyyi5xdgLw5WeXHmYpETAzn6isYCz2G5 sHznuKO4X8jDyIoByPFRD1vpJwxzwcRY2xWOcjZ1CGC6+NSLGzKkw6ELB58RctOZ bn6SwP+nZOTDszliq0e6oO1tocQ1eDb9pSiUVrhV7KLdGSkzvPyR7rR/mbruUVgj oP2EGQ4mZsuXQL41orj9461IRsnIBC2lpLk3wSggFXV6tUsq/7FyAWYZEp9Az37g ZZIui3lvgIQcVjvLGY5w1OHWMZbzI1UVHelR3CndnTz7jeKheYCJQE+xYn8q7SM+ sBjZjObXq3zXAgYEw0Z41Em6RbS5R3IAIlNKPmXwqXI0qARIlso1fCs9YOnrcQ52 g4sRj9dz9toa6ExiJMkr9TUbHdsaNXRQSBmLzYOLcwzPMADWBbBnPj6XDKWRDyb2 Q3rpGCiSb+g4KaS78on3zhnig9r9PzgNJcsYnhE3YgxBx5HXzttF2RnK/HlHvIDI HO6GOwMKQ5tGPt2FdK88JNmB9dJxkUp9ASVX9ymy0FnogSsBcA/EUxI6f+q5j94D MFu/Bp8eniHDwvViD8MDp2okhBwXHAkfbjeQjj22aX14QOjpaqAWZim5y1QiUijj e9vMndW6TMD2KZwa59OUWQ0C5MkN26I3/etfaWKq/pv95JdvEps= =eNCw -----END PGP SIGNATURE-----