Overview

File _patchinfo of Package patchinfo.26832

<patchinfo incident="26832">
  <issue tracker="cve" id="2022-2601"/>
  <issue tracker="cve" id="2022-3775"/>
  <issue tracker="bnc" id="1205178">VUL-0: EMBARGOED: CVE-2022-2601: grub2: buffer overflow in grub_font_construct_glyph</issue>
  <issue tracker="bnc" id="1205182">VUL-0: EMBARGOED: CVE-2022-3775: grub2: font: Fix an integer underflow in blit_comb()</issue>
  <issue tracker="bnc" id="1205520">L3: grub2 drops to rescue mode with 2.02-146.1 version if the /boot is using xfs - ref:_00D1igLOd._5005qFfc2M:ref</issue>
  <issue tracker="bnc" id="1205554">Remove unsupported zfs module from grub2</issue>
  <packager>michael-chang</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for grub2</summary>
  <description>This update for grub2 fixes the following issues:

Security Fixes:
    
- CVE-2022-2601: Fixed buffer overflow in grub_font_construct_glyph (bsc#1205178).
- CVE-2022-3775: Fixed integer underflow in blit_comb() (bsc#1205182).
    
Other:

- Bump upstream SBAT generation to 3
- Fix unreadable filesystem with xfs v4 superblock (bsc#1205520).
- Remove zfs modules (bsc#1205554).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places