HomeSolus
Diffusion grub2 1d9a529ed42f

Sync with git for boothole fixes.

Authored by JoshStrobl on Jul 31 2020, 2:29 PM.

Description

Sync with git for boothole fixes.

Resolves the following CVEs:

  • CVE-2020-14308
  • CVE-2020-14309
  • CVE-2020-14310
  • CVE-2020-14311
  • CVE-2020-15705
  • CVE-2020-15706
  • CVE-2020-15707

Important Notes:

  • Solus is not affected by the UEFI and Secure Boot related vulnerabilities in GRUB2, as GRUB is used strictly for legacy BIOS, with clr-boot-manager generating EFI loaders and enforcing an EFI System Partition for UEFI support. We do not support Secure Boot either. The GRUB2 vulnerabilities that would affect Solus users pertain to heap-based buffer overloads and in scenarios that would typically require physical access to the machine.

Details

Committed
JoshStroblJul 31 2020, 2:29 PM
Pushed
JoshStroblJul 31 2020, 2:34 PM
Parents
R1068:35e443a308c1: Update grub2 to 2.04
Branches
Unknown
Tags
Unknown
References
HEAD -> master, tag: grub2-2.04-27