USN-6410-1

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/notices/USN-6410-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6410-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/USN-6410-1

Related

Published

2023-10-04T01:31:42.004586Z

Modified

2023-10-04T01:31:42.004586Z

Summary

grub2-signed, grub2-unsigned vulnerabilities

Details

It was discovered that a specially crafted file system image could cause a heap-based out-of-bounds write. A local attacker could potentially use this to perform arbitrary code execution bypass and bypass secure boot protections. (CVE-2023-4692)

It was discovered that a specially crafted file system image could cause an out-of-bounds read. A physically-present attacker could possibly use this to leak sensitive information to the GRUB pager. (CVE-2023-4693)

References

Affected packages

Ubuntu:20.04:LTS / grub2-signed

Package

Name: grub2-signed
Purl: pkg:deb/ubuntu/grub2-signed@1.187.6~20.04.1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.187.6~20.04.1

Affected versions

1.*

1.128

1.129

1.130

1.131

1.133

1.134

1.135

1.136

1.137

1.138

1.139

1.140

1.141

1.142

1.142.1

1.142.3

1.142.4

1.142.5

1.142.6

1.142.8

1.142.9

1.142.10

1.142.11

1.167

1.167.2

1.173.2~20.04.1

1.173.4

1.187.2~20.04.2

1.187.3~20.04.1

1.187.4~20.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "1.187.6~20.04.1+2.06-2ubuntu14.4",
            "binary_name": "grub-efi-amd64-signed"
        },
        {
            "binary_version": "1.187.6~20.04.1+2.06-2ubuntu14.4",
            "binary_name": "grub-efi-arm64-signed"
        }
    ]
}

Ubuntu:22.04:LTS / grub2-signed

Package

Name: grub2-signed
Purl: pkg:deb/ubuntu/grub2-signed@1.187.6?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.187.6

Affected versions

1.*

1.173

1.174

1.176

1.177

1.178

1.179

1.180

1.182~22.04.1

1.187.2

1.187.3~22.04.1

1.187.4~22.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "1.187.6+2.06-2ubuntu14.4",
            "binary_name": "grub-efi-amd64-signed"
        },
        {
            "binary_version": "1.187.6+2.06-2ubuntu14.4",
            "binary_name": "grub-efi-arm64-signed"
        }
    ]
}

Ubuntu:22.04:LTS / grub2-unsigned

Package

Name: grub2-unsigned
Purl: pkg:deb/ubuntu/grub2-unsigned@2.06-2ubuntu14.4?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.06-2ubuntu14.4

Affected versions

2.*

2.04-1ubuntu47

2.04-1ubuntu48

2.06-2ubuntu3

2.06-2ubuntu4

2.06-2ubuntu5

2.06-2ubuntu6

2.06-2ubuntu7

2.06-2ubuntu10

2.06-2ubuntu14

2.06-2ubuntu14.1

2.06-2ubuntu14.2

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "2.06-2ubuntu14.4",
            "binary_name": "grub-efi-amd64"
        },
        {
            "binary_version": "2.06-2ubuntu14.4",
            "binary_name": "grub-efi-amd64-bin"
        },
        {
            "binary_version": "2.06-2ubuntu14.4",
            "binary_name": "grub-efi-amd64-dbg"
        },
        {
            "binary_version": "2.06-2ubuntu14.4",
            "binary_name": "grub-efi-arm64"
        },
        {
            "binary_version": "2.06-2ubuntu14.4",
            "binary_name": "grub-efi-arm64-bin"
        },
        {
            "binary_version": "2.06-2ubuntu14.4",
            "binary_name": "grub-efi-arm64-dbg"
        }
    ]
}