Overview

File _patchinfo of Package patchinfo.38582

<patchinfo incident="38582">
  <issue tracker="jsc" id="PED-12028"/>
  <issue tracker="cve" id="2025-4382"/>
  <issue tracker="bnc" id="1235971">[SLE-15 SP6][HPE bug] Installation failed on NVMe-oF with segfault in shim-install</issue>
  <issue tracker="bnc" id="1239651">grub2-probe dumps core on NVMeoF system</issue>
  <issue tracker="bnc" id="1235958">Partner-L3: [SLES15SP6 Bug]  NVMe over TCP boot failed in SLES15 SP6 and SLES15 SP7</issue>
  <issue tracker="bnc" id="1242971">VUL-0: CVE-2025-4382: grub2: GRUB TPM Auto- decryption Data Exposure</issue>
  <packager>msmeissn</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for grub2</summary>
<description>
This update for grub2 rebuilds the existing package with the new 4k RSA secure boot key for IBM Power and Z.

Note: the signing key of x86 / x86_64 and aarch64 architectures are unchanged.

Also the following issue were fixed:

- CVE-2025-4382: TPM auto-decryption data exposure (bsc#1242971)
- Fix segmentation fault error in grub2-probe with target=hints_string (bsc#1235971) (bsc#1235958) (bsc#1239651)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places