Skip to main content

Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

SUSE-SU-2021:0679-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2021:0679-1

UNKNOWN

Security update for grub2

Published Mar 2, 2021

Modified 4 years ago

Fix available

Details

This update for grub2 fixes the following issues:

grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)

Following security issues are fixed that can violate secure boot constraints:

CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)
CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)
CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)
CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)
CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)
CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)

grub2 was bumped to version 2.02, same as SUSE Linux Enterprise 12 SP3.

Affected Packages

grub2

SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2SUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

grub2-i386-pc

SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2SUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

grub2-snapper-plugin

SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2SUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

grub2-systemd-sleep-plugin

SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2SUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

grub2-x86_64-efi

SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2SUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

grub2-x86_64-xen

SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2SUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

grub2-powerpc-ieee1275

SUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server for SAP Applications 12 SP2

Fixed in:

2.02-115.59.1

grub2-s390x-emu

SUSE Linux Enterprise Server 12 SP2-LTSSSUSE OpenStack Cloud 7

Fixed in:

2.02-115.59.1

References

REPORThttps://bugzilla.suse.com/1175970 REPORThttps://bugzilla.suse.com/1176711 REPORThttps://bugzilla.suse.com/1177883 REPORThttps://bugzilla.suse.com/1179264 REPORThttps://bugzilla.suse.com/1179265 REPORThttps://bugzilla.suse.com/1182057 REPORThttps://bugzilla.suse.com/1182262 REPORThttps://bugzilla.suse.com/1182263 WEBhttps://www.suse.com/security/cve/CVE-2020-14372 WEBhttps://www.suse.com/security/cve/CVE-2020-25632 WEBhttps://www.suse.com/security/cve/CVE-2020-25647 WEBhttps://www.suse.com/security/cve/CVE-2020-27749 WEBhttps://www.suse.com/security/cve/CVE-2020-27779 WEBhttps://www.suse.com/security/cve/CVE-2021-20225 WEBhttps://www.suse.com/security/cve/CVE-2021-20233 ADVISORYhttps://www.suse.com/support/update/announcement/2021/suse-su-20210679-1/

Upstream

CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233

Related

CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233

Ecosystems

SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE OpenStack Cloud 7

Timeline

PublishedMar 2, 2021

ModifiedMar 2, 2021