Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
grub2
(any)
grub2-branding-upstream
(any)
grub2-debuginfo
(any)
grub2-debugsource
(any)
grub2-i386-efi
(any)
grub2-i386-efi-debuginfo
(any)
grub2-i386-pc
(any)
grub2-i386-pc-debuginfo
(any)
grub2-snapper-plugin
(any)
grub2-x86_64-efi
(any)
grub2-x86_64-efi-debuginfo
(any)
grub2-x86_64-xen
(any)
Описание
Уведомление безопасности об уязвимостях openSUSE 13.1, openSUSE 13.2
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
openSUSE 13.1:
x86_64:
grub2-x86_64-efi - 2.00-39.11.1
grub2-x86_64-efi-debuginfo - 2.00-39.11.1
openSUSE 13.1:
i586, x86_64:
grub2-debugsource - 2.00-39.11.1
grub2-i386-pc - 2.00-39.11.1
grub2-debuginfo - 2.00-39.11.1
grub2-i386-pc-debuginfo - 2.00-39.11.1
grub2 - 2.00-39.11.1
openSUSE 13.1:
i586:
grub2-i386-efi-debuginfo - 2.00-39.11.1
grub2-i386-efi - 2.00-39.11.1
openSUSE 13.2:
x86_64:
grub2-x86_64-efi - 2.02~beta2-20.13.1
grub2-x86_64-xen - 2.02~beta2-20.13.1
openSUSE 13.2:
i586, x86_64:
grub2 - 2.02~beta2-20.13.1
grub2-debugsource - 2.02~beta2-20.13.1
grub2-i386-pc - 2.02~beta2-20.13.1
grub2-debuginfo - 2.02~beta2-20.13.1
grub2-branding-upstream - 2.02~beta2-20.13.1
openSUSE 13.2:
i586:
grub2-i386-efi - 2.02~beta2-20.13.1
openSUSE 13.2:
noarch:
grub2-snapper-plugin - 2.02~beta2-20.13.1
openSUSE 13.1:
x86_64:
grub2-x86_64-efi - 2.00-39.11.1
grub2-x86_64-efi-debuginfo - 2.00-39.11.1
openSUSE 13.1:
i586, x86_64:
grub2-debugsource - 2.00-39.11.1
grub2-i386-pc - 2.00-39.11.1
grub2-debuginfo - 2.00-39.11.1
grub2-i386-pc-debuginfo - 2.00-39.11.1
grub2 - 2.00-39.11.1
openSUSE 13.1:
i586:
grub2-i386-efi-debuginfo - 2.00-39.11.1
grub2-i386-efi - 2.00-39.11.1
openSUSE 13.2:
x86_64:
grub2-x86_64-efi - 2.02~beta2-20.13.1
grub2-x86_64-xen - 2.02~beta2-20.13.1
openSUSE 13.2:
i586, x86_64:
grub2 - 2.02~beta2-20.13.1
grub2-debugsource - 2.02~beta2-20.13.1
grub2-i386-pc - 2.02~beta2-20.13.1
grub2-debuginfo - 2.02~beta2-20.13.1
grub2-branding-upstream - 2.02~beta2-20.13.1
openSUSE 13.2:
i586:
grub2-i386-efi - 2.02~beta2-20.13.1
openSUSE 13.2:
noarch:
grub2-snapper-plugin - 2.02~beta2-20.13.1
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00037.html
https://bugzilla.suse.com/956631
Источник: CVE
Наименование: CVE-2015-8370
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8370
https://bugzilla.suse.com/956631
Источник: CVE
Наименование: CVE-2015-8370
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8370