Ubuntu
grub2 package

grub2 2.12~rc1-10ubuntu4 source package in Ubuntu

Changelog

grub2 (2.12~rc1-10ubuntu4) mantic; urgency=high

  * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
    and may leak sensitive information into the GRUB pager.
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
      label.patch:
      fs/ntfs: Fix an OOB read when parsing a volume label
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
      index-at.patch:
      fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
      entries-fr.patch:
      fs/ntfs: Fix an OOB read when parsing directory entries from resident and
      non-resident index attributes
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
      reside.patch:
      fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
      attribute
    - CVE-2023-4693
  * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
    overflow and may allow arbitrary code execution and secure boot bypass.
    - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
      ATTRIBUTE_LIST-.patch:
      fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
      the $MFT file
    - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
      fs/ntfs: Make code more readable
    - CVE-2023-4692

 -- Mate Kukri <email address hidden>  Mon, 02 Oct 2023 15:23:58 +0100

Upload details

Uploaded by:
Mate Kukri
Sponsored by:
Julian Andres Klode
Uploaded to:
Mantic
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
admin
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Mantic release main admin

Downloads

File Size SHA-256 Checksum
grub2_2.12~rc1.orig.tar.xz 6.3 MiB 7a60c08b0ff1bac630cae6293b73871a541610a7fb1a7337aeb5e96f359cd650
grub2_2.12~rc1-10ubuntu4.debian.tar.xz 1.1 MiB 17ab8b7391490ec789aaafac00cccb3ebcc44966babc68d64432d157b43ccd18
grub2_2.12~rc1-10ubuntu4.dsc 7.1 KiB 7a17a59157e3b18c37c65a118583d52db09a96d6217cbc62e330a7dba031abfa

View changes file

Binary packages built by this source

grub-common: GRand Unified Bootloader (common files)

 This package contains common files shared by the distinct flavours of GRUB.
 It is shared between GRUB Legacy and GRUB 2, although a number of files
 specific to GRUB 2 are here as long as they do not break GRUB Legacy.
 .
 grub-mkrescue needs the suggested packages mtools (for UEFI targets) and
 xorriso.

grub-common-dbgsym: debug symbols for grub-common
grub-coreboot: GRand Unified Bootloader, version 2 (Coreboot version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with platforms running the Coreboot firmware. Installing this package
 indicates that this version of GRUB should be the active boot loader.

grub-coreboot-bin: GRand Unified Bootloader, version 2 (Coreboot modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use with
 platforms running the Coreboot firmware. It can be installed in parallel
 with other flavours, but will not automatically install GRUB as the active
 boot loader nor automatically update grub.cfg on upgrade unless
 grub-coreboot is also installed.

grub-coreboot-dbg: GRand Unified Bootloader, version 2 (Coreboot debug files)

 This package contains debugging files for grub-coreboot-bin. You only need
 these if you are trying to debug GRUB using its GDB stub.

grub-efi: GRand Unified Bootloader, version 2 (dummy package)

 This is a dummy package that depends on the grub-efi-$ARCH package most likely
 to be appropriate for each architecture.

grub-efi-amd64-signed-template: GRand Unified Bootloader, version 2 (EFI-AMD64 signing template)

 This package contains template files for grub-efi-amd64-signed.
 This is only needed for Secure Boot signing.

grub-efi-arm: GRand Unified Bootloader, version 2 (ARM UEFI version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use on ARM systems with UEFI. Installing this package indicates that this
 version of GRUB should be the active boot loader.

grub-efi-arm-bin: GRand Unified Bootloader, version 2 (ARM UEFI modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use on ARM
 systems with UEFI. It can be installed in parallel with other flavours,
 but will not automatically install GRUB as the active boot loader nor
 automatically update grub.cfg on upgrade unless grub-efi-arm is also
 installed.

grub-efi-arm-dbg: GRand Unified Bootloader, version 2 (ARM UEFI debug files)

 This package contains debugging files for grub-efi-arm-bin. You only need
 these if you are trying to debug GRUB using its GDB stub.

grub-efi-arm64-signed-template: GRand Unified Bootloader, version 2 (ARM64 UEFI signing template)

 This package contains template files for grub-efi-arm64-signed.
 This is only needed for Secure Boot signing.

grub-efi-ia32: GRand Unified Bootloader, version 2 (EFI-IA32 version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with the EFI-IA32 architecture, as used by Intel Macs (unless a BIOS
 interface has been activated). Installing this package indicates that this
 version of GRUB should be the active boot loader.

grub-efi-ia32-bin: GRand Unified Bootloader, version 2 (EFI-IA32 modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use with the
 EFI-IA32 architecture, as used by Intel Macs (unless a BIOS interface has
 been activated). It can be installed in parallel with other flavours, but
 will not automatically install GRUB as the active boot loader nor
 automatically update grub.cfg on upgrade unless grub-efi-ia32 is also
 installed.

grub-efi-ia32-dbg: GRand Unified Bootloader, version 2 (EFI-IA32 debug files)

 This package contains debugging files for grub-efi-ia32-bin. You only need
 these if you are trying to debug GRUB using its GDB stub.

grub-efi-riscv64: GRand Unified Bootloader, version 2 (riscv64 UEFI version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use on RISC-V 64-bit systems with UEFI. Installing this package indicates that
 this version of GRUB should be the active boot loader.

grub-efi-riscv64-bin: GRand Unified Bootloader, version 2 (riscv64 UEFI modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use on riscv64
 systems with UEFI. It can be installed in parallel with other flavours,
 but will not automatically install GRUB as the active boot loader nor
 automatically update grub.cfg on upgrade unless grub-efi-riscv64 is also
 installed.

grub-efi-riscv64-dbg: GRand Unified Bootloader, version 2 (riscv64 UEFI debug files)

 This package contains debugging files for grub-efi-riscv64-bin. You only
 need these if you are trying to debug GRUB using its GDB stub.

grub-emu: GRand Unified Bootloader, version 2 (emulated version)

 This package contains grub-emu, an emulated version of GRUB. It is only
 provided for debugging purposes.

grub-emu-dbg: GRand Unified Bootloader, version 2 (emulated debug files)

 This package contains debugging files for grub-emu. You only need these if
 you are trying to debug GRUB using its GDB stub.

grub-emu-dbgsym: debug symbols for grub-emu
grub-firmware-qemu: GRUB firmware image for QEMU

 This package contains a binary of GRUB that has been built for use as
 firmware for QEMU. It can be used as a replacement for other PC BIOS
 images provided by seabios, bochsbios, and so on.
 .
 In order to make QEMU use this firmware, simply add `-bios grub.bin' when
 invoking it.
 .
 This package behaves in the same way as GRUB for coreboot, but doesn't
 contain any code from coreboot itself, and is only suitable for QEMU. If
 you want to install GRUB as firmware on real hardware, you need to use the
 grub-coreboot package, and manually combine that with coreboot.

grub-ieee1275: GRand Unified Bootloader, version 2 (Open Firmware version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with Open Firmware implementations. Installing this package indicates
 that this version of GRUB should be the active boot loader.

grub-ieee1275-bin: GRand Unified Bootloader, version 2 (Open Firmware modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use with Open
 Firmware implementations. It can be installed in parallel with other
 flavours, but will not automatically install GRUB as the active boot loader
 nor automatically update grub.cfg on upgrade unless grub-ieee1275 is also
 installed.

grub-ieee1275-bin-dbgsym: debug symbols for grub-ieee1275-bin
grub-ieee1275-dbg: GRand Unified Bootloader, version 2 (Open Firmware debug files)

 This package contains debugging files for grub-ieee1275-bin. You only
 need these if you are trying to debug GRUB using its GDB stub.

grub-linuxbios: GRand Unified Bootloader, version 2 (dummy package)

 This is a dummy transitional package that depends on grub-coreboot.

grub-pc: GRand Unified Bootloader, version 2 (PC/BIOS version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
  - VESA-based graphical mode with background image support and complete 24-bit
    color set.
  - Support for extended charsets. Users can write UTF-8 text to their menu
    entries.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with the traditional PC/BIOS architecture. Installing this package
 indicates that this version of GRUB should be the active boot loader.

grub-pc-bin: GRand Unified Bootloader, version 2 (PC/BIOS modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
  - VESA-based graphical mode with background image support and complete 24-bit
    color set.
  - Support for extended charsets. Users can write UTF-8 text to their menu
    entries.
 .
 This package contains GRUB modules that have been built for use with the
 traditional PC/BIOS architecture. It can be installed in parallel with
 other flavours, but will not automatically install GRUB as the active boot
 loader nor automatically update grub.cfg on upgrade unless grub-pc is also
 installed.

grub-pc-bin-dbgsym: debug symbols for grub-pc-bin
grub-pc-dbg: GRand Unified Bootloader, version 2 (PC/BIOS debug files)

 This package contains debugging files for grub-pc-bin. You only need these
 if you are trying to debug GRUB using its GDB stub.

grub-rescue-pc: GRUB bootable rescue images, version 2 (PC/BIOS version)

 This package contains three GRUB rescue images that have been built for use
 with the traditional PC/BIOS architecture:
 .
  - grub-rescue-floppy.img: floppy image.
  - grub-rescue-cdrom.iso: El Torito CDROM image.
  - grub-rescue-usb.img: USB image.

grub-theme-starfield: GRand Unified Bootloader, version 2 (starfield theme)

 This is the default theme for GRUB's graphical menu.

grub-uboot: GRand Unified Bootloader, version 2 (ARM U-Boot version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with ARM systems with U-Boot. Installing this package indicates that
 this version of GRUB should be the active boot loader.

grub-uboot-bin: GRand Unified Bootloader, version 2 (ARM U-Boot modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use with ARM
 systems with U-Boot. It can be installed in parallel with other flavours,
 but will not automatically install GRUB as the active boot loader nor
 automatically update grub.cfg on upgrade unless grub-uboot is also
 installed.

grub-uboot-dbg: GRand Unified Bootloader, version 2 (ARM U-Boot debug files)

 This package contains debugging files for grub-uboot-bin. You only need
 these if you are trying to debug GRUB using its GDB stub.

grub-xen: GRand Unified Bootloader, version 2 (Xen version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This is a dependency package for a version of GRUB that has been built for
 use with the Xen hypervisor (i.e. PV-GRUB). Installing this package
 indicates that this version of GRUB should be the active boot loader.

grub-xen-bin: GRand Unified Bootloader, version 2 (Xen modules)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package contains GRUB modules that have been built for use with the
 Xen hypervisor (i.e. PV-GRUB). It can be installed in parallel with other
 flavours, but will not automatically install GRUB as the active boot loader
 nor automatically update grub.cfg on upgrade unless grub-xen is also
 installed.

grub-xen-dbg: GRand Unified Bootloader, version 2 (Xen debug files)

 This package contains debugging files for grub-xen-bin. You only need
 these if you are trying to debug GRUB using its GDB stub.

grub-xen-host: GRand Unified Bootloader, version 2 (Xen host version)

 GRUB is a portable, powerful bootloader. This version of GRUB is based on a
 cleaner design than its predecessors, and provides the following new features:
 .
  - Scripting in grub.cfg using BASH-like syntax.
  - Support for modern partition maps such as GPT.
  - Modular generation of grub.cfg via update-grub. Packages providing GRUB
    add-ons can plug in their own script rules and trigger updates by invoking
    update-grub.
 .
 This package arranges for GRUB binary images which can be used to boot a Xen
 guest (i.e. PV-GRUB) to be present in the control domain filesystem.

grub2: GRand Unified Bootloader, version 2 (dummy package)

 This is a dummy transitional package to handle GRUB 2 upgrades. It can be
 safely removed.

grub2-common: GRand Unified Bootloader (common files for version 2)

 This package contains common files shared by the distinct flavours of GRUB.
 The files in this package are specific to GRUB 2, and would break GRUB
 Legacy if installed on the same system.

grub2-common-dbgsym: debug symbols for grub2-common