Advisory: CLSA-2025:1744219840
OS: CloudLinux 7 ELS
Public date: 2025-04-09 17:30:42
Project: grub2
Version: 2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4
Errata link: https://errata.cloudlinux.com/cloudlinux7els/CLSA-2025-1744219840.html
- CVE-2025-0624: net: Out-of-bounds write in grub_net_search_configfile() - CVE-2025-0690: read: Integer overflow may lead to out-of-bounds write - CVE-2025-1118: commands/dump: The dump command is not in lockdown when secure boot is enabled - CVE-2025-0678: squash4: Integer overflow may lead to heap based out-of-bounds write when reading data - CVE-2025-1125: fs/hfs: Integer overflow may lead to heap based out-of-bounds write
Update command: yum update grub2*
grub2-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-common-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.noarch.rpm grub2-efi-ia32-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-efi-ia32-cdboot-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-efi-ia32-modules-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.noarch.rpm grub2-efi-x64-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-efi-x64-cdboot-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-efi-x64-modules-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.noarch.rpm grub2-pc-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-pc-modules-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.noarch.rpm grub2-tools-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-tools-extra-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm grub2-tools-minimal-2.02-0.87.el7_9.14.cloudlinux.1.tuxcare.els4.x86_64.rpm