Login
Newsletter
Werbung
Sicherheit: Mehrere Probleme in grub2
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in grub2
ID: SUSE-SU-2025:0629-1
Distribution: SUSE
Plattformen: SUSE Linux Enterprise Server 12 SP5, SUSE Linux Enterprise High Performance Computing 12 SP5, SUSE Linux Enterprise Server for SAP Applications 12 SP5, SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security, SUSE Linux Enterprise Server 12 SP5 LTSS
Datum: Sa, 22. Februar 2025, 07:35
Referenzen: https://www.cve.org/CVERecord?id=CVE-2024-45782
https://www.cve.org/CVERecord?id=CVE-2024-45774
https://www.cve.org/CVERecord?id=CVE-2024-45780
https://www.cve.org/CVERecord?id=CVE-2025-0678
https://www.cve.org/CVERecord?id=CVE-2024-45776
https://www.cve.org/CVERecord?id=CVE-2024-45778
https://www.cve.org/CVERecord?id=CVE-2025-0624
https://www.cve.org/CVERecord?id=CVE-2024-56737
https://www.cve.org/CVERecord?id=CVE-2025-0685
https://www.cve.org/CVERecord?id=CVE-2025-1118
https://www.cve.org/CVERecord?id=CVE-2025-0689
https://www.cve.org/CVERecord?id=CVE-2025-0684
https://www.cve.org/CVERecord?id=CVE-2024-45775
https://www.cve.org/CVERecord?id=CVE-2024-45777
https://www.cve.org/CVERecord?id=CVE-2025-0690
https://www.cve.org/CVERecord?id=CVE-2025-0686
https://www.cve.org/CVERecord?id=CVE-2025-1125
https://www.cve.org/CVERecord?id=CVE-2024-45781
https://www.cve.org/CVERecord?id=CVE-2024-45783
https://www.cve.org/CVERecord?id=CVE-2024-45779
https://www.cve.org/CVERecord?id=CVE-2025-0622
https://www.cve.org/CVERecord?id=CVE-2025-0677
Applikationen: GRUB

Originalnachricht

 
--===============3586543907066681080==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit



# Security update for grub2

Announcement ID: SUSE-SU-2025:0629-1  
Release Date: 2025-02-21T12:55:16Z  
Rating: important  
References:

  * bsc#1233606
  * bsc#1233608
  * bsc#1233609
  * bsc#1233610
  * bsc#1233612
  * bsc#1233613
  * bsc#1233614
  * bsc#1233615
  * bsc#1233616
  * bsc#1233617
  * bsc#1234958
  * bsc#1236316
  * bsc#1236317
  * bsc#1237002
  * bsc#1237006
  * bsc#1237008
  * bsc#1237009
  * bsc#1237010
  * bsc#1237011
  * bsc#1237012
  * bsc#1237013
  * bsc#1237014

  
Cross-References:

  * CVE-2024-45774
  * CVE-2024-45775
  * CVE-2024-45776
  * CVE-2024-45777
  * CVE-2024-45778
  * CVE-2024-45779
  * CVE-2024-45780
  * CVE-2024-45781
  * CVE-2024-45782
  * CVE-2024-45783
  * CVE-2024-56737
  * CVE-2025-0622
  * CVE-2025-0624
  * CVE-2025-0677
  * CVE-2025-0678
  * CVE-2025-0684
  * CVE-2025-0685
  * CVE-2025-0686
  * CVE-2025-0689
  * CVE-2025-0690
  * CVE-2025-1118
  * CVE-2025-1125

  
CVSS scores:

  * CVE-2024-45774 ( SUSE ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45774 ( NVD ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45775 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45775 ( NVD ):  5.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H
  * CVE-2024-45776 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45776 ( NVD ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45777 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45777 ( NVD ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45778 ( SUSE ):  3.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L
  * CVE-2024-45779 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45780 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45781 ( SUSE ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45781 ( NVD ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45782 ( SUSE ):  6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45783 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-45783 ( NVD ):  4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-56737 ( SUSE ):  8.4
    CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
  * CVE-2024-56737 ( SUSE ):  7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2024-56737 ( NVD ):  8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2025-0622 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0622 ( NVD ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0624 ( SUSE ):  7.6 CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
  * CVE-2025-0624 ( NVD ):  7.6 CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
  * CVE-2025-0677 ( SUSE ):  8.9
    CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-0677 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0677 ( NVD ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0678 ( SUSE ):  8.9
    CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-0678 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0684 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0685 ( SUSE ):  8.9
    CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-0685 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0686 ( SUSE ):  8.9
    CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-0686 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0689 ( SUSE ):  8.9
    CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-0689 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2025-0690 ( SUSE ):  7.3
    CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-0690 ( SUSE ):  6.1 CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
  * CVE-2025-1118 ( SUSE ):  6.7
    CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
  * CVE-2025-1118 ( SUSE ):  4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
  * CVE-2025-1118 ( NVD ):  4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
  * CVE-2025-1125 ( SUSE ):  8.7
    CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  * CVE-2025-1125 ( SUSE ):  6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

  
Affected Products:

  * SUSE Linux Enterprise High Performance Computing 12 SP5
  * SUSE Linux Enterprise Server 12 SP5
  * SUSE Linux Enterprise Server 12 SP5 LTSS
  * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
  * SUSE Linux Enterprise Server for SAP Applications 12 SP5

  
  
An update that solves 22 vulnerabilities can now be installed.

## Description:

This update for grub2 fixes the following issues:

  * CVE-2024-45781: Fixed strcpy overflow in ufs. (bsc#1233617)
  * CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. (bsc#1234958)
  * CVE-2024-45782: Fixed strcpy overflow in hfs. (bsc#1233615)
  * CVE-2024-45780: Fixed an overflow in tar/cpio. (bsc#1233614)
  * CVE-2024-45783: Fixed a refcount overflow in hfsplus. (bsc#1233616)
  * CVE-2024-45774: Fixed a heap overflow in JPEG parser. (bsc#1233609)
  * CVE-2024-45775: Fixed a missing NULL check in extcmd parser. (bsc#1233610)
  * CVE-2024-45776: Fixed an overflow in .MO file handling. (bsc#1233612)
  * CVE-2024-45777: Fixed an integer overflow in gettext. (bsc#1233613)
  * CVE-2024-45778: Fixed bfs filesystem by removing it from lockdown capable
    modules. (bsc#1233606)
  * CVE-2024-45779: Fixed a heap overflow in bfs. (bsc#1233608)
  * CVE-2025-0624: Fixed an out-of-bounds write during the network boot
 process.
    (bsc#1236316)
  * CVE-2025-0622: Fixed a use-after-free when handling hooks during module
    unload in command/gpg . (bsc#1236317)
  * CVE-2025-0690: Fixed an integer overflow that may lead to an out-of-bounds
    write through the read command. (bsc#1237012)
  * CVE-2025-1118: Fixed an issue where the dump command was not being blocked
    when grub was in lockdown mode. (bsc#1237013)
  * CVE-2025-0677: Fixed an integer overflow that may lead to an out-of-bounds
    write when handling symlinks in ufs. (bsc#1237002)
  * CVE-2025-0684: Fixed an integer overflow that may lead to an out-of-bounds
    write when handling symlinks in reiserfs. (bsc#1237008)
  * CVE-2025-0685: Fixed an integer overflow that may lead to an out-of-bounds
    write when handling symlinks in jfs. (bsc#1237009)
  * CVE-2025-0686: Fixed an integer overflow that may lead to an out-of-bounds
    write when handling symlinks in romfs. (bsc#1237010)
  * CVE-2025-0689: Fixed a heap-based buffer overflow in udf that may lead to
    arbitrary code execution. (bsc#1237011)
  * CVE-2025-1125: Fixed an integer overflow that may lead to an out-of-bounds
    write in hfs. (bsc#1237014)
  * CVE-2025-0678: Fixed an integer overflow that may lead to an out-of-bounds
    write in squash4. (bsc#1237006)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Linux Enterprise Server 12 SP5 LTSS  
    zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-629=1

  * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security  
    zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-629=1

## Package List:

  * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64)
    * grub2-debuginfo-2.02-181.2
    * grub2-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64)
    * grub2-arm64-efi-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 s390x x86_64)
    * grub2-debugsource-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS (noarch)
    * grub2-systemd-sleep-plugin-2.02-181.2
    * grub2-x86_64-xen-2.02-181.2
    * grub2-snapper-plugin-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS (ppc64le)
    * grub2-powerpc-ieee1275-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x)
    * grub2-s390x-emu-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS (x86_64)
    * grub2-x86_64-efi-2.02-181.2
    * grub2-i386-pc-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64)
    * grub2-2.02-181.2
    * grub2-debugsource-2.02-181.2
    * grub2-debuginfo-2.02-181.2
    * grub2-x86_64-efi-2.02-181.2
    * grub2-i386-pc-2.02-181.2
  * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch)
    * grub2-systemd-sleep-plugin-2.02-181.2
    * grub2-x86_64-xen-2.02-181.2
    * grub2-snapper-plugin-2.02-181.2

## References:

  * https://www.suse.com/security/cve/CVE-2024-45774.html
  * https://www.suse.com/security/cve/CVE-2024-45775.html
  * https://www.suse.com/security/cve/CVE-2024-45776.html
  * https://www.suse.com/security/cve/CVE-2024-45777.html
  * https://www.suse.com/security/cve/CVE-2024-45778.html
  * https://www.suse.com/security/cve/CVE-2024-45779.html
  * https://www.suse.com/security/cve/CVE-2024-45780.html
  * https://www.suse.com/security/cve/CVE-2024-45781.html
  * https://www.suse.com/security/cve/CVE-2024-45782.html
  * https://www.suse.com/security/cve/CVE-2024-45783.html
  * https://www.suse.com/security/cve/CVE-2024-56737.html
  * https://www.suse.com/security/cve/CVE-2025-0622.html
  * https://www.suse.com/security/cve/CVE-2025-0624.html
  * https://www.suse.com/security/cve/CVE-2025-0677.html
  * https://www.suse.com/security/cve/CVE-2025-0678.html
  * https://www.suse.com/security/cve/CVE-2025-0684.html
  * https://www.suse.com/security/cve/CVE-2025-0685.html
  * https://www.suse.com/security/cve/CVE-2025-0686.html
  * https://www.suse.com/security/cve/CVE-2025-0689.html
  * https://www.suse.com/security/cve/CVE-2025-0690.html
  * https://www.suse.com/security/cve/CVE-2025-1118.html
  * https://www.suse.com/security/cve/CVE-2025-1125.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1233606
  * https://bugzilla.suse.com/show_bug.cgi?id=1233608
  * https://bugzilla.suse.com/show_bug.cgi?id=1233609
  * https://bugzilla.suse.com/show_bug.cgi?id=1233610
  * https://bugzilla.suse.com/show_bug.cgi?id=1233612
  * https://bugzilla.suse.com/show_bug.cgi?id=1233613
  * https://bugzilla.suse.com/show_bug.cgi?id=1233614
  * https://bugzilla.suse.com/show_bug.cgi?id=1233615
  * https://bugzilla.suse.com/show_bug.cgi?id=1233616
  * https://bugzilla.suse.com/show_bug.cgi?id=1233617
  * https://bugzilla.suse.com/show_bug.cgi?id=1234958
  * https://bugzilla.suse.com/show_bug.cgi?id=1236316
  * https://bugzilla.suse.com/show_bug.cgi?id=1236317
  * https://bugzilla.suse.com/show_bug.cgi?id=1237002
  * https://bugzilla.suse.com/show_bug.cgi?id=1237006
  * https://bugzilla.suse.com/show_bug.cgi?id=1237008
  * https://bugzilla.suse.com/show_bug.cgi?id=1237009
  * https://bugzilla.suse.com/show_bug.cgi?id=1237010
  * https://bugzilla.suse.com/show_bug.cgi?id=1237011
  * https://bugzilla.suse.com/show_bug.cgi?id=1237012
  * https://bugzilla.suse.com/show_bug.cgi?id=1237013
  * https://bugzilla.suse.com/show_bug.cgi?id=1237014


--===============3586543907066681080==
Content-Type: text/html; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit




<div class="container">
    <h1>Security update for grub2</h1>

    <table class="table table-striped table-bordered">
        <tbody>
        <tr>
            <th>Announcement ID:</th>
            <td>SUSE-SU-2025:0629-1</td>
        </tr>
        <tr>
            <th>Release Date:</th>
            <td>2025-02-21T12:55:16Z</td>
        </tr>
        
        <tr>
            <th>Rating:</th>
            <td>important</td>
        </tr>
        <tr>
            <th>References:</th>
            <td>
                <ul>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233606">bsc#1233606</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233608">bsc#1233608</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233609">bsc#1233609</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233610">bsc#1233610</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233612">bsc#1233612</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233613">bsc#1233613</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233614">bsc#1233614</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233615">bsc#1233615</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233616">bsc#1233616</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233617">bsc#1233617</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1234958">bsc#1234958</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1236316">bsc#1236316</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1236317">bsc#1236317</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237002">bsc#1237002</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237006">bsc#1237006</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237008">bsc#1237008</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237009">bsc#1237009</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237010">bsc#1237010</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237011">bsc#1237011</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237012">bsc#1237012</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237013">bsc#1237013</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237014">bsc#1237014</a>
                        </li>
                    
                    
                </ul>
            </td>
        </tr>
        
            <tr>
                <th>
                    Cross-References:
                </th>
                <td>
                    <ul>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45774.html">CVE-2024-45774</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45775.html">CVE-2024-45775</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45776.html">CVE-2024-45776</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45777.html">CVE-2024-45777</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45778.html">CVE-2024-45778</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45779.html">CVE-2024-45779</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45780.html">CVE-2024-45780</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45781.html">CVE-2024-45781</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45782.html">CVE-2024-45782</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-45783.html">CVE-2024-45783</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2024-56737.html">CVE-2024-56737</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0622.html">CVE-2025-0622</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0624.html">CVE-2025-0624</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0677.html">CVE-2025-0677</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0678.html">CVE-2025-0678</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0684.html">CVE-2025-0684</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0685.html">CVE-2025-0685</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0686.html">CVE-2025-0686</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0689.html">CVE-2025-0689</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-0690.html">CVE-2025-0690</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-1118.html">CVE-2025-1118</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2025-1125.html">CVE-2025-1125</a>
                        </li>
                    
                    </ul>
                </td>
            </tr>
            <tr>
                <th>CVSS scores:</th>
                <td>
                    <ul class="list-group">
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45774</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45774</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45775</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45775</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">5.2</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45776</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45776</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45777</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45777</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45778</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">3.9</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45779</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45780</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45781</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45781</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45782</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45783</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-45783</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">4.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-56737</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.4</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-56737</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.8</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2024-56737</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.8</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0622</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0622</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0624</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.6</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0624</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.6</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0677</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.9</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0677</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0677</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0678</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.9</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0678</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0684</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0685</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.9</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0685</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0686</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.9</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0686</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0689</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.9</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0689</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0690</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.3</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-0690</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.1</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-1118</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.7</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-1118</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">4.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-1118</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">4.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-1125</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.7</span>
                                <span
 class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2025-1125</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.4</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                    </ul>
                </td>
            </tr>
        
        <tr>
            <th>Affected Products:</th>
            <td>
                <ul class="list-group">
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise High Performance Computing 12 SP5</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Server 12 SP5</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Server 12 SP5 LTSS</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Server 12 SP5 LTSS Extended Security</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Server for SAP Applications 12 SP5</li>
                    
                </ul>
            </td>
        </tr>
        </tbody>
    </table>

    <p>An update that solves 22 vulnerabilities can now be
 installed.</p>

    


    
        <h2>Description:</h2>
    
    <p>This update for grub2 fixes the following issues:</p>
<ul>
<li>CVE-2024-45781: Fixed strcpy overflow in ufs.
 (bsc#1233617)</li>
<li>CVE-2024-56737: Fixed a heap-based buffer overflow in hfs.
 (bsc#1234958)</li>
<li>CVE-2024-45782: Fixed strcpy overflow in hfs.
 (bsc#1233615)</li>
<li>CVE-2024-45780: Fixed an overflow in tar/cpio.
 (bsc#1233614)</li>
<li>CVE-2024-45783: Fixed a refcount overflow in hfsplus.
 (bsc#1233616)</li>
<li>CVE-2024-45774: Fixed a heap overflow in JPEG parser.
 (bsc#1233609)</li>
<li>CVE-2024-45775: Fixed a missing NULL check in extcmd parser.
 (bsc#1233610)</li>
<li>CVE-2024-45776: Fixed an overflow in .MO file handling.
 (bsc#1233612)</li>
<li>CVE-2024-45777: Fixed an integer overflow in gettext.
 (bsc#1233613)</li>
<li>CVE-2024-45778: Fixed bfs filesystem by removing it from lockdown
 capable modules. (bsc#1233606)</li>
<li>CVE-2024-45779: Fixed a heap overflow in bfs.
 (bsc#1233608)</li>
<li>CVE-2025-0624: Fixed an out-of-bounds write during the network boot
 process. (bsc#1236316)</li>
<li>CVE-2025-0622: Fixed a use-after-free when handling hooks during
 module unload in command/gpg . (bsc#1236317)</li>
<li>CVE-2025-0690: Fixed an integer overflow that may lead to an
 out-of-bounds write through the read command.
  (bsc#1237012)</li>
<li>CVE-2025-1118: Fixed an issue where the dump command was not being
 blocked when grub was in lockdown mode.
  (bsc#1237013)</li>
<li>CVE-2025-0677: Fixed an integer overflow that may lead to an
 out-of-bounds write when handling symlinks in ufs.
  (bsc#1237002)</li>
<li>CVE-2025-0684: Fixed an integer overflow that may lead to an
 out-of-bounds write when handling symlinks in reiserfs.
  (bsc#1237008)</li>
<li>CVE-2025-0685: Fixed an integer overflow that may lead to an
 out-of-bounds write when handling symlinks in jfs.
  (bsc#1237009)</li>
<li>CVE-2025-0686: Fixed an integer overflow that may lead to an
 out-of-bounds write when handling symlinks in romfs.
  (bsc#1237010)</li>
<li>CVE-2025-0689: Fixed a heap-based buffer overflow in udf that may
 lead to arbitrary code execution. (bsc#1237011)</li>
<li>CVE-2025-1125: Fixed an integer overflow that may lead to an
 out-of-bounds write in hfs. (bsc#1237014)</li>
<li>CVE-2025-0678: Fixed an integer overflow that may lead to an
 out-of-bounds write in squash4. (bsc#1237006)</li>
</ul>



    

    <h2>Patch Instructions:</h2>
    <p>
        To install this SUSE  update use the SUSE recommended
        installation methods like YaST online_update or "zypper
 patch".<br/>

        Alternatively you can run the command listed for your product:
    </p>
    <ul class="list-group">
        
            <li class="list-group-item">
                SUSE Linux Enterprise Server 12 SP5 LTSS
                
                    
                        <br/>
                        <code>zypper in -t patch
 SUSE-SLE-SERVER-12-SP5-LTSS-2025-629=1</code>
                    
                    
                
            </li>
        
            <li class="list-group-item">
                SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
                
                    
                        <br/>
                        <code>zypper in -t patch
 SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-629=1</code>
                    
                    
                
            </li>
        
    </ul>

    <h2>Package List:</h2>
    <ul>
        
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le
 s390x x86_64)
                    <ul>
                        
                            <li>grub2-debuginfo-2.02-181.2</li>
                        
                            <li>grub2-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64)
                    <ul>
                        
                            <li>grub2-arm64-efi-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 s390x
 x86_64)
                    <ul>
                        
                            <li>grub2-debugsource-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (noarch)
                    <ul>
                        
                           
 <li>grub2-systemd-sleep-plugin-2.02-181.2</li>
                        
                            <li>grub2-x86_64-xen-2.02-181.2</li>
                        
                           
 <li>grub2-snapper-plugin-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (ppc64le)
                    <ul>
                        
                           
 <li>grub2-powerpc-ieee1275-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (s390x)
                    <ul>
                        
                            <li>grub2-s390x-emu-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS (x86_64)
                    <ul>
                        
                            <li>grub2-x86_64-efi-2.02-181.2</li>
                        
                            <li>grub2-i386-pc-2.02-181.2</li>
                        
                    </ul>
                </li>
            
        
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
 (x86_64)
                    <ul>
                        
                            <li>grub2-2.02-181.2</li>
                        
                            <li>grub2-debugsource-2.02-181.2</li>
                        
                            <li>grub2-debuginfo-2.02-181.2</li>
                        
                            <li>grub2-x86_64-efi-2.02-181.2</li>
                        
                            <li>grub2-i386-pc-2.02-181.2</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
 (noarch)
                    <ul>
                        
                           
 <li>grub2-systemd-sleep-plugin-2.02-181.2</li>
                        
                            <li>grub2-x86_64-xen-2.02-181.2</li>
                        
                           
 <li>grub2-snapper-plugin-2.02-181.2</li>
                        
                    </ul>
                </li>
            
        
    </ul>

    
        <h2>References:</h2>
        <ul>
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45774.html">https://www.suse.com/security/cve/CVE-2024-45774.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45775.html">https://www.suse.com/security/cve/CVE-2024-45775.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45776.html">https://www.suse.com/security/cve/CVE-2024-45776.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45777.html">https://www.suse.com/security/cve/CVE-2024-45777.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45778.html">https://www.suse.com/security/cve/CVE-2024-45778.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45779.html">https://www.suse.com/security/cve/CVE-2024-45779.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45780.html">https://www.suse.com/security/cve/CVE-2024-45780.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45781.html">https://www.suse.com/security/cve/CVE-2024-45781.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45782.html">https://www.suse.com/security/cve/CVE-2024-45782.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-45783.html">https://www.suse.com/security/cve/CVE-2024-45783.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2024-56737.html">https://www.suse.com/security/cve/CVE-2024-56737.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0622.html">https://www.suse.com/security/cve/CVE-2025-0622.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0624.html">https://www.suse.com/security/cve/CVE-2025-0624.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0677.html">https://www.suse.com/security/cve/CVE-2025-0677.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0678.html">https://www.suse.com/security/cve/CVE-2025-0678.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0684.html">https://www.suse.com/security/cve/CVE-2025-0684.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0685.html">https://www.suse.com/security/cve/CVE-2025-0685.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0686.html">https://www.suse.com/security/cve/CVE-2025-0686.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0689.html">https://www.suse.com/security/cve/CVE-2025-0689.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-0690.html">https://www.suse.com/security/cve/CVE-2025-0690.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-1118.html">https://www.suse.com/security/cve/CVE-2025-1118.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2025-1125.html">https://www.suse.com/security/cve/CVE-2025-1125.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233606">https://bugzilla.suse.com/show_bug.cgi?id=1233606</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233608">https://bugzilla.suse.com/show_bug.cgi?id=1233608</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233609">https://bugzilla.suse.com/show_bug.cgi?id=1233609</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233610">https://bugzilla.suse.com/show_bug.cgi?id=1233610</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233612">https://bugzilla.suse.com/show_bug.cgi?id=1233612</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233613">https://bugzilla.suse.com/show_bug.cgi?id=1233613</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233614">https://bugzilla.suse.com/show_bug.cgi?id=1233614</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233615">https://bugzilla.suse.com/show_bug.cgi?id=1233615</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233616">https://bugzilla.suse.com/show_bug.cgi?id=1233616</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1233617">https://bugzilla.suse.com/show_bug.cgi?id=1233617</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1234958">https://bugzilla.suse.com/show_bug.cgi?id=1234958</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1236316">https://bugzilla.suse.com/show_bug.cgi?id=1236316</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1236317">https://bugzilla.suse.com/show_bug.cgi?id=1236317</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237002">https://bugzilla.suse.com/show_bug.cgi?id=1237002</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237006">https://bugzilla.suse.com/show_bug.cgi?id=1237006</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237008">https://bugzilla.suse.com/show_bug.cgi?id=1237008</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237009">https://bugzilla.suse.com/show_bug.cgi?id=1237009</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237010">https://bugzilla.suse.com/show_bug.cgi?id=1237010</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237011">https://bugzilla.suse.com/show_bug.cgi?id=1237011</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237012">https://bugzilla.suse.com/show_bug.cgi?id=1237012</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237013">https://bugzilla.suse.com/show_bug.cgi?id=1237013</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1237014">https://bugzilla.suse.com/show_bug.cgi?id=1237014</a>
                    </li>
                
            
        </ul>
    
</div>

--===============3586543907066681080==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung