UBUNTU-CVE-2020-10713

Source
https://ubuntu.com/security/CVE-2020-10713
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-10713.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-10713
Related
Published
2020-07-29T17:00:00Z
Modified
2024-11-20T12:28:09Z
Severity
  • 8.2 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
  • 8.2 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

References

Affected packages

Ubuntu:Pro:14.04:LTS / grub2

Package

Name
grub2
Purl
pkg:deb/ubuntu/grub2?arch=src?distro=trusty/esm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.02~beta2-9ubuntu1.20

Affected versions

2.*

2.00-19ubuntu2
2.00-19ubuntu3
2.00-19ubuntu4
2.00-20
2.00-21
2.00-22
2.02~beta2-5
2.02~beta2-6
2.02~beta2-7
2.02~beta2-8
2.02~beta2-9
2.02~beta2-9ubuntu1
2.02~beta2-9ubuntu1.1
2.02~beta2-9ubuntu1.2
2.02~beta2-9ubuntu1.3
2.02~beta2-9ubuntu1.4
2.02~beta2-9ubuntu1.5
2.02~beta2-9ubuntu1.6
2.02~beta2-9ubuntu1.7
2.02~beta2-9ubuntu1.8
2.02~beta2-9ubuntu1.11
2.02~beta2-9ubuntu1.12
2.02~beta2-9ubuntu1.14
2.02~beta2-9ubuntu1.15
2.02~beta2-9ubuntu1.16
2.02~beta2-9ubuntu1.17

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-common"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-common-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-coreboot"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-coreboot-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-coreboot-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-arm"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-arm-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-arm-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-arm64-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-ia32"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-ia32-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-ia32-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-emu"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-emu-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-emu-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-firmware-qemu"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-ieee1275"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-ieee1275-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-ieee1275-bin-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-ieee1275-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-linuxbios"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-mount-udeb"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-mount-udeb-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-pc"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-pc-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-pc-bin-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-pc-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-rescue-pc"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-theme-starfield"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-uboot"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-uboot-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-uboot-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-xen"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-xen-bin"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-xen-dbg"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub2"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub2-common"
        },
        {
            "binary_version": "2.02~beta2-9ubuntu1.20",
            "binary_name": "grub2-common-dbgsym"
        }
    ]
}

Ubuntu:Pro:14.04:LTS / grub2-signed

Package

Name
grub2-signed
Purl
pkg:deb/ubuntu/grub2-signed?arch=src?distro=trusty/esm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.34.22

Affected versions

1.*

1.22
1.23
1.24
1.25
1.26
1.27
1.30
1.31
1.32
1.33
1.34
1.34.1
1.34.2
1.34.3
1.34.4
1.34.5
1.34.6
1.34.7
1.34.8
1.34.9
1.34.13
1.34.14
1.34.16
1.34.17
1.34.18
1.34.20

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "1.34.22+2.02~beta2-9ubuntu1.20",
            "binary_name": "grub-efi-amd64-signed"
        }
    ]
}

Ubuntu:16.04:LTS / grub2

Package

Name
grub2
Purl
pkg:deb/ubuntu/grub2?arch=src?distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.02~beta2-36ubuntu3.26

Affected versions

2.*

2.02~beta2-29
2.02~beta2-31
2.02~beta2-31ubuntu1
2.02~beta2-32
2.02~beta2-32ubuntu1
2.02~beta2-35
2.02~beta2-35ubuntu1
2.02~beta2-36
2.02~beta2-36ubuntu1
2.02~beta2-36ubuntu2
2.02~beta2-36ubuntu3
2.02~beta2-36ubuntu3.1
2.02~beta2-36ubuntu3.2
2.02~beta2-36ubuntu3.6
2.02~beta2-36ubuntu3.7
2.02~beta2-36ubuntu3.8
2.02~beta2-36ubuntu3.9
2.02~beta2-36ubuntu3.11
2.02~beta2-36ubuntu3.12
2.02~beta2-36ubuntu3.14
2.02~beta2-36ubuntu3.15
2.02~beta2-36ubuntu3.16
2.02~beta2-36ubuntu3.17
2.02~beta2-36ubuntu3.18
2.02~beta2-36ubuntu3.19
2.02~beta2-36ubuntu3.20
2.02~beta2-36ubuntu3.21
2.02~beta2-36ubuntu3.22
2.02~beta2-36ubuntu3.23

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-common"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-common-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-coreboot"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-coreboot-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-coreboot-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm64-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-ia32"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-ia32-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-ia32-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-emu"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-emu-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-emu-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-firmware-qemu"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-ieee1275"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-ieee1275-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-ieee1275-bin-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-ieee1275-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-linuxbios"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-mount-udeb"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-mount-udeb-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-pc"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-pc-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-pc-bin-dbgsym"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-pc-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-rescue-pc"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-theme-starfield"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-uboot"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-uboot-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-uboot-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-xen"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-xen-bin"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-xen-dbg"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-xen-host"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub2"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub2-common"
        },
        {
            "binary_version": "2.02~beta2-36ubuntu3.26",
            "binary_name": "grub2-common-dbgsym"
        }
    ]
}

Ubuntu:16.04:LTS / grub2-signed

Package

Name
grub2-signed
Purl
pkg:deb/ubuntu/grub2-signed?arch=src?distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.66.26

Affected versions

1.*

1.55
1.56
1.57
1.58
1.59
1.61
1.62
1.63
1.64
1.65
1.66
1.66.1
1.66.2
1.66.6
1.66.7
1.66.8
1.66.9
1.66.11
1.66.12
1.66.14
1.66.15
1.66.16
1.66.17
1.66.18
1.66.19
1.66.20
1.66.21
1.66.22
1.66.23

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "1.66.26+2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-amd64-signed"
        },
        {
            "binary_version": "1.66.26+2.02~beta2-36ubuntu3.26",
            "binary_name": "grub-efi-arm64-signed"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / grub2-unsigned

Package

Name
grub2-unsigned
Purl
pkg:deb/ubuntu/grub2-unsigned?arch=src?distro=esm-infra/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.04-1ubuntu44
2.04-1ubuntu44.1
2.04-1ubuntu44.1.2

Ecosystem specific

{
    "ubuntu_priority": "high"
}

Ubuntu:18.04:LTS / grub2

Package

Name
grub2
Purl
pkg:deb/ubuntu/grub2?arch=src?distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.02-2ubuntu8.16

Affected versions

2.*

2.02~beta3-4ubuntu7
2.02-2ubuntu1
2.02-2ubuntu2
2.02-2ubuntu4
2.02-2ubuntu6
2.02-2ubuntu7
2.02-2ubuntu8
2.02-2ubuntu8.1
2.02-2ubuntu8.2
2.02-2ubuntu8.3
2.02-2ubuntu8.4
2.02-2ubuntu8.6
2.02-2ubuntu8.7
2.02-2ubuntu8.9
2.02-2ubuntu8.10
2.02-2ubuntu8.12
2.02-2ubuntu8.13
2.02-2ubuntu8.14
2.02-2ubuntu8.15

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-common"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-common-dbgsym"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-coreboot"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-coreboot-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-coreboot-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm64-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-ia32"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-ia32-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-efi-ia32-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-emu"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-emu-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-firmware-qemu"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-ieee1275"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-ieee1275-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-ieee1275-bin-dbgsym"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-ieee1275-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-linuxbios"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-mount-udeb"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-pc"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-pc-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-pc-bin-dbgsym"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-pc-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-rescue-pc"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-theme-starfield"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-uboot"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-uboot-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-uboot-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-xen"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-xen-bin"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-xen-dbg"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub-xen-host"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub2"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub2-common"
        },
        {
            "binary_version": "2.02-2ubuntu8.16",
            "binary_name": "grub2-common-dbgsym"
        }
    ]
}

Ubuntu:18.04:LTS / grub2-signed

Package

Name
grub2-signed
Purl
pkg:deb/ubuntu/grub2-signed?arch=src?distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.93.18

Affected versions

1.*

1.85
1.86
1.87
1.89
1.91
1.92
1.93
1.93.1
1.93.2
1.93.3
1.93.4
1.93.5
1.93.7
1.93.8
1.93.10
1.93.11
1.93.13
1.93.14
1.93.15
1.93.16

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "1.93.18+2.02-2ubuntu8.16",
            "binary_name": "grub-efi-amd64-signed"
        },
        {
            "binary_version": "1.93.18+2.02-2ubuntu8.16",
            "binary_name": "grub-efi-arm64-signed"
        }
    ]
}

Ubuntu:18.04:LTS / grub2-unsigned

Package

Name
grub2-unsigned
Purl
pkg:deb/ubuntu/grub2-unsigned?arch=src?distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.04-1ubuntu47.4

Affected versions

2.*

2.04-1ubuntu44
2.04-1ubuntu44.1
2.04-1ubuntu44.1.2

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-arm64-dbg"
        }
    ]
}

Ubuntu:Pro:18.04:LTS / grub2-unsigned

Package

Name
grub2-unsigned
Purl
pkg:deb/ubuntu/grub2-unsigned?arch=src?distro=esm-infra/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.04-1ubuntu44
2.04-1ubuntu44.1
2.04-1ubuntu44.1.2
2.04-1ubuntu47.4
2.06-2ubuntu14
2.06-2ubuntu14.1

Ecosystem specific

{
    "ubuntu_priority": "high"
}

Ubuntu:20.04:LTS / grub2

Package

Name
grub2
Purl
pkg:deb/ubuntu/grub2?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.04-1ubuntu26.1

Affected versions

2.*

2.04-1ubuntu12
2.04-1ubuntu13
2.04-1ubuntu14
2.04-1ubuntu16
2.04-1ubuntu18
2.04-1ubuntu20
2.04-1ubuntu21
2.04-1ubuntu22
2.04-1ubuntu23
2.04-1ubuntu24
2.04-1ubuntu25
2.04-1ubuntu26

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-common"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-common-dbgsym"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-coreboot"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-coreboot-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-coreboot-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-amd64-signed-template"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm64-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm64-signed-template"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-ia32"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-ia32-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-efi-ia32-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-emu"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-emu-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-firmware-qemu"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-ieee1275"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-ieee1275-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-ieee1275-bin-dbgsym"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-ieee1275-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-linuxbios"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-mount-udeb"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-pc"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-pc-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-pc-bin-dbgsym"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-pc-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-rescue-pc"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-theme-starfield"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-uboot"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-uboot-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-uboot-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-xen"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-xen-bin"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-xen-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub-xen-host"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub2"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub2-common"
        },
        {
            "binary_version": "2.04-1ubuntu26.1",
            "binary_name": "grub2-common-dbgsym"
        }
    ]
}

Ubuntu:20.04:LTS / grub2-signed

Package

Name
grub2-signed
Purl
pkg:deb/ubuntu/grub2-signed?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.142.3

Affected versions

1.*

1.128
1.129
1.130
1.131
1.133
1.134
1.135
1.136
1.137
1.138
1.139
1.140
1.141
1.142
1.142.1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "1.142.3+2.04-1ubuntu26.1",
            "binary_name": "grub-efi-amd64-signed"
        },
        {
            "binary_version": "1.142.3+2.04-1ubuntu26.1",
            "binary_name": "grub-efi-arm64-signed"
        }
    ]
}

Ubuntu:20.04:LTS / grub2-unsigned

Package

Name
grub2-unsigned
Purl
pkg:deb/ubuntu/grub2-unsigned?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.04-1ubuntu47.4

Affected versions

2.*

2.04-1ubuntu44
2.04-1ubuntu44.2

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.04-1ubuntu47.4",
            "binary_name": "grub-efi-arm64-dbg"
        }
    ]
}

Ubuntu:22.04:LTS / grub2

Package

Name
grub2
Purl
pkg:deb/ubuntu/grub2?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.06-2ubuntu7

Affected versions

2.*

2.04-1ubuntu47
2.04-1ubuntu48
2.06-2ubuntu3
2.06-2ubuntu4
2.06-2ubuntu5
2.06-2ubuntu6

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-common"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-common-dbgsym"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-coreboot"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-coreboot-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-coreboot-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-amd64-signed-template"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm64-signed-template"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-ia32"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-ia32-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-ia32-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-riscv64"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-riscv64-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-riscv64-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-emu"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-emu-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-firmware-qemu"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-ieee1275"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-ieee1275-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-ieee1275-bin-dbgsym"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-ieee1275-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-linuxbios"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-pc"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-pc-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-pc-bin-dbgsym"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-pc-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-rescue-pc"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-theme-starfield"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-uboot"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-uboot-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-uboot-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-xen"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-xen-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-xen-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-xen-host"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub2"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub2-common"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub2-common-dbgsym"
        }
    ]
}

Ubuntu:22.04:LTS / grub2-signed

Package

Name
grub2-signed
Purl
pkg:deb/ubuntu/grub2-signed?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.182~22.04.1

Affected versions

1.*

1.173
1.174
1.176
1.177
1.178
1.179
1.180

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "1.182~22.04.1+2.06-2ubuntu10",
            "binary_name": "grub-efi-amd64-signed"
        },
        {
            "binary_version": "1.182~22.04.1+2.06-2ubuntu10",
            "binary_name": "grub-efi-arm64-signed"
        }
    ]
}

Ubuntu:22.04:LTS / grub2-unsigned

Package

Name
grub2-unsigned
Purl
pkg:deb/ubuntu/grub2-unsigned?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.06-2ubuntu7

Affected versions

2.*

2.04-1ubuntu47
2.04-1ubuntu48
2.06-2ubuntu3
2.06-2ubuntu4
2.06-2ubuntu5
2.06-2ubuntu6

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "high",
    "binaries": [
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.06-2ubuntu7",
            "binary_name": "grub-efi-arm64-dbg"
        }
    ]
}