-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 02 Oct 2023 16:11:34 +0200 Source: grub2 Binary: grub-common grub-common-dbgsym grub-mount-udeb Architecture: s390x Version: 2.06-13+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: s390x Build Daemon (zandonai) Changed-By: Julian Andres Klode Description: grub-common - GRand Unified Bootloader (common files) grub-mount-udeb - export GRUB filesystems using FUSE (udeb) Changes: grub2 (2.06-13+deb12u1) bookworm-security; urgency=medium . [ Mate Kukri ] * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write and may leak sensitive information into the GRUB pager. - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume- label.patch: fs/ntfs: Fix an OOB read when parsing a volume label - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for- index-at.patch: fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory- entries-fr.patch: fs/ntfs: Fix an OOB read when parsing directory entries from resident and non-resident index attributes - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe- reside.patch: fs/ntfs: Fix an OOB read when reading data from the resident $DATA + attribute - CVE-2023-4693 * SECURITY UPDATE: Crafted file system images can cause heap-based buffer overflow and may allow arbitrary code execution and secure boot bypass. - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the- ATTRIBUTE_LIST-.patch: fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for the $MFT file - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch fs/ntfs: Make code more readable - CVE-2023-4692 . [ Julian Andres Klode ] * Bump SBAT to grub,4 Checksums-Sha1: 1ed8feddc93785be89038a08a05479a8f75e3c51 10275648 grub-common-dbgsym_2.06-13+deb12u1_s390x.deb 3f54f43125d0ded1003074bae13e217b186bf0c0 2621008 grub-common_2.06-13+deb12u1_s390x.deb 5210c60a8ca83437fdd70314c6a44489b30f792d 390728 grub-mount-udeb_2.06-13+deb12u1_s390x.udeb 10acc46c05c14a998eb3c9ed524093eb285cefbf 10723 grub2_2.06-13+deb12u1_s390x-buildd.buildinfo Checksums-Sha256: 09252ce63c32599de814034fa8e1684adca5c107e56cf3946607d3609b37a937 10275648 grub-common-dbgsym_2.06-13+deb12u1_s390x.deb c8a68d23f6f58f624fcc1b7a2d0bad5f38fe88769431d192748f80ead0674d5b 2621008 grub-common_2.06-13+deb12u1_s390x.deb e82dfce78c8bfee03823f2358c163bc0ecc28cc39c4b6eb732fcc81c8e74425b 390728 grub-mount-udeb_2.06-13+deb12u1_s390x.udeb 125b2388ab6a447a3963923618c8f0422f92fb275b200b58c33d8503e5e27cd3 10723 grub2_2.06-13+deb12u1_s390x-buildd.buildinfo Files: d2482fdc2e5462f8983634ee738ab20a 10275648 debug optional grub-common-dbgsym_2.06-13+deb12u1_s390x.deb 3b879d817243ecfd195541a6502a81ec 2621008 admin optional grub-common_2.06-13+deb12u1_s390x.deb e6c9684720a0682a33c57133342b21ca 390728 debian-installer optional grub-mount-udeb_2.06-13+deb12u1_s390x.udeb 0831c28f4abac7a6f958cfd3c62fcc3f 10723 admin optional grub2_2.06-13+deb12u1_s390x-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEhBjA3afmaHyzk51IFQ1EGN3xM6QFAmUcQogACgkQFQ1EGN3x M6Ts/A/9EziiomDCjQ4OXW8RI94joViGRg/zNwu7vzFYe8dhyG7OuECCPSSZJm80 hWXJIPkjUfQKZaglGxQb31y/2tHqaHNAXR78GS4zZiBS+cXosK/NkDE8EzH+qWg0 hzHAMoEXDOGsV5HZTSVy7k7/ekAgernQndtA0rPLSllgZrGMsKTKJhE4bWxqfsLK gvAVgc9U9rHF7AyfWFD+bOMief/SiiTaiakjObbELlBBWIOhX4RB6ekOodkJwts3 hY6MWrsG3duikaLfQQpwn0WEENEtoBfp0X7l1jS7RGExu9uTes1AWoUoaEC1qiqg 7D+tj0QaOlFm9ya9txCgA/lDjKNVQxH9bZvTl0Zxl66eo/ektNNVMOeUQzKL/v71 kI/BpTpH8Y1//0BUvlC0uG8EvS+rfyr9xWzDCKFuHmM9aiSwdktz23QuMHu73F8V Ir3D945bA/kol7VQRYm3iXIclc5L+9151BZNC5bTwmePE0hQWCp5/U7f2EP/qMMj me6ifj/KcgLejeu6vOAxFvuIix/TyjMZmr9E7nISZ/q5w1hawxfO0Oi6/yVEeojM c0dh4qO074ekQwalpBF908YbYyZjtyjwSHdQ/L8AX26+l6FxUfRyTlRnj0ND+L1x yxN9tD5ZYK5yA/zHX1OHFWP/wH6NiP4P7/K8LD58CrHTQBE8yU0= =N+sI -----END PGP SIGNATURE-----