Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution.
Package | sys-boot/grub on all architectures |
---|---|
Affected versions | < 2.06-r4 |
Unaffected versions | >= 2.06-r4 |
GNU GRUB is a multiboot boot loader used by most Linux systems.
Multiple vulnerabilities have been discovered in GRUB. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
All GRUB users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=sys-boot/grub-2.06-r4"
Release date
November 25, 2023
Latest revision
November 26, 2023: 2
Severity
high
Exploitable
remote
Bugzilla entries