Debian Security Advisory 5519-1

Debian Security Advisory 5519-1: Posted Oct 9, 2023; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5519-1 - Maxim Suhanov discovered multiple vulnerabilities in GURB2's code to handle NTFS filesystems, which may result in a Secure Boot bypass.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2023-4692, CVE-2023-4693; SHA-256 | 69c6c2e6aac12f53f91896003b4bf1c34f93099bdaab89e3995c3c1a344d85ba; Download | Favorite | View

Debian Security Advisory 5519-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5519-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
October 06, 2023                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : grub2
CVE ID         : CVE-2023-4692 CVE-2023-4693

Maxim Suhanov discovered multiple vulnerabilities in GURB2's code to
handle NTFS filesystems, which may result in a Secure Boot bypass.

For the oldstable distribution (bullseye), these problems have been fixed
in version 2.06-3~deb11u6.

For the stable distribution (bookworm), these problems have been fixed in
version 2.06-13+deb12u1.

We recommend that you upgrade your grub2 packages.

For the detailed security status of grub2 please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/grub2

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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+IHG
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 294 files
Ubuntu 80 files
Debian 19 files
Ahmet Umit Bayram 8 files
Amit Roy 4 files
Jann Horn 4 files
Google Security Research 4 files
tmrswrr 4 files
Furkan Eren Tetik 4 files
h00die 3 files

File Archives

Systems

AIX (429)
Apple (2,089)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,061)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,500)
HPUX (880)
iOS (375)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,018)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (16,064)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,580)
UNIX (9,417)
UnixWare (187)
Windows (6,662)
Other

Debian Security Advisory 5519-1

Debian Security Advisory 5519-1

File Archive:

June 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 5519-1

Share This

Debian Security Advisory 5519-1

File Archive:

June 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems