<div class="container">
<h1>Security update for grub2</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2025:20863-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2025-10-17T12:05:21Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1229163">bsc#1229163</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1229164">bsc#1229164</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230840">bsc#1230840</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231591">bsc#1231591</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1232411">bsc#1232411</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233606">bsc#1233606</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233608">bsc#1233608</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233609">bsc#1233609</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233610">bsc#1233610</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233612">bsc#1233612</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233613">bsc#1233613</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233614">bsc#1233614</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233615">bsc#1233615</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233616">bsc#1233616</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233617">bsc#1233617</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1234958">bsc#1234958</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1234959">bsc#1234959</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1236316">bsc#1236316</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1236317">bsc#1236317</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237002">bsc#1237002</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237006">bsc#1237006</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237008">bsc#1237008</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237009">bsc#1237009</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237010">bsc#1237010</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237011">bsc#1237011</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237012">bsc#1237012</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237013">bsc#1237013</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237014">bsc#1237014</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1242971">bsc#1242971</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1247242">bsc#1247242</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1249140">bsc#1249140</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>
Cross-References:
</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45774.html">CVE-2024-45774</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45775.html">CVE-2024-45775</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45776.html">CVE-2024-45776</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45777.html">CVE-2024-45777</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45778.html">CVE-2024-45778</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45779.html">CVE-2024-45779</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45780.html">CVE-2024-45780</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45781.html">CVE-2024-45781</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45782.html">CVE-2024-45782</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45783.html">CVE-2024-45783</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-49504.html">CVE-2024-49504</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-56737.html">CVE-2024-56737</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-56738.html">CVE-2024-56738</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0622.html">CVE-2025-0622</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0624.html">CVE-2025-0624</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0677.html">CVE-2025-0677</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0678.html">CVE-2025-0678</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0684.html">CVE-2025-0684</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0685.html">CVE-2025-0685</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0686.html">CVE-2025-0686</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0689.html">CVE-2025-0689</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-0690.html">CVE-2025-0690</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-1118.html">CVE-2025-1118</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-1125.html">CVE-2025-1125</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2025-4382.html">CVE-2025-4382</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>CVSS scores:</th>
<td>
<ul class="list-group">
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45774</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45774</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45775</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45775</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.2</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45776</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45776</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45777</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45777</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45778</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">3.9</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45778</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.1</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45778</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45779</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45779</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45779</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45780</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45780</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45781</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45781</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45782</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45782</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45782</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45783</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45783</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-49504</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.9</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-49504</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.2</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-49504</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.0</span>
<span class="cvss-vector">CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-56737</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.4</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-56737</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-56737</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">8.8</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-56738</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.7</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-56738</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-56738</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.3</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0622</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0622</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0624</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.6</span>
<span class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0624</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.6</span>
<span class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0677</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.9</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0677</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0677</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0678</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.9</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0678</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0678</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0678</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0684</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0684</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0684</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0685</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.9</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0685</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0685</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0685</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0686</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.9</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0686</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0686</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0686</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0689</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.9</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0689</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0689</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0689</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0690</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.3</span>
<span class="cvss-vector">CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0690</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.1</span>
<span class="cvss-vector">CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-0690</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.1</span>
<span class="cvss-vector">CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1118</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1118</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1118</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1125</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.7</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1125</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1125</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-1125</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-4382</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.4</span>
<span class="cvss-vector">CVSS:4.0/AV:P/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-4382</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.9</span>
<span class="cvss-vector">CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2025-4382</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.9</span>
<span class="cvss-vector">CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N</span>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Micro 6.1</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that solves 25 vulnerabilities and has six fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for grub2 fixes the following issues:</p>
<ul>
<li>
<p>Fix error: /boot/grub2/x86_64-efi/bli.mod not found (bsc#1231591)</p>
</li>
<li>
<p>Fix OOM error in loading loopback file (bsc#1230840) (bsc#1249140)</p>
</li>
<li>
<p>Update the patch to fix "SRK not matched" errors when unsealing
the key (bsc#1232411) (bsc#1247242)</p>
</li>
</ul>
<p>Security fixes for 2024:</p>
<ul>
<li>
<p>Bump upstream SBAT generation to 5</p>
</li>
<li>
<p>CVE-2024-45774: Fixed heap overflows in JPEG parser (bsc#1233609)</p>
</li>
<li>CVE-2024-45775: Fixed missing NULL check in extcmd parser (bsc#1233610)</li>
<li>CVE-2024-45776: Fixed overflow in .MO file (gettext) handling (bsc#1233612)</li>
<li>CVE-2024-45777: Fixed integer overflow in gettext (bsc#1233613)</li>
<li>CVE-2024-45778: Fixed bfs filesystem not fuzzing stable (bsc#1233606)</li>
<li>CVE-2024-45779: Fixed bfs heap overflow (bsc#1233608)</li>
<li>CVE-2024-45780: Fixed overflow in tar/cpio (bsc#1233614)</li>
<li>CVE-2024-45781: Fixed ufs strcpy overflow(bsc#1233617)</li>
<li>CVE-2024-45782: Fixed hfs strcpy overflow (bsc#1233615)</li>
<li>CVE-2024-45783: Fixed hfsplus refcount overflow (bsc#1233616)</li>
<li>CVE-2024-49504: Fixed bypassing TPM-bound disk encryption on SL(E)M
encrypted Images (bsc#1229163) (bsc#1229164)</li>
<li>CVE-2024-56737: Fixed heap-based buffer overflow in fs/hfs.c via
crafted sblock data in an HFS filesystem (bsc#1234958)</li>
<li>CVE-2024-56738: Fixed side-channel attack due to not constant-time
algorithm in grub_crypto_memcmp (bsc#1234959)</li>
<li>CVE-2025-0622: Fixed command/gpg use-after-free due to hooks not being
removed on module unload (bsc#1236317)</li>
<li>CVE-2025-0624: Fixed net Out-of-bounds write in grub_net_search_config_file() (bsc#1236316)</li>
<li>CVE-2025-0677: Fixed UFS integer overflow may lead to heap based
out-of-bounds write when handling symlinks (bsc#1237002)</li>
<li>CVE-2025-0678: Fixed squash4 Integer overflow may lead to heap based
out-of-bounds write when reading data (bsc#1237006)</li>
<li>CVE-2025-0684: Fixed reiserfs Integer overflow when handling symlinks
may lead to heap based out-of-bounds write when reading data (bsc#1237008)</li>
<li>CVE-2025-0685: Fixed jfs Integer overflow when handling symlinks may
lead to heap based out-of-bounds write when reading data (bsc#1237009)</li>
<li>CVE-2025-0686: Fixed romfs Integer overflow when handling symlinks
may lead to heap based out-of-bounds write when reading data (bsc#1237010)</li>
<li>CVE-2025-0689: Fixed udf heap based buffer overflow in
grub_udf_read_block() may lead to arbitrary code execution (bsc#1237011)</li>
<li>CVE-2025-0690: Fixed "read" integer overflow may lead to out-of-bounds write (bsc#1237012)</li>
<li>CVE-2025-1118: Fixed commands/dump The dump command is not in lockdown when secure boot is enabled (bsc#1237013)</li>
<li>CVE-2025-1125: Fixed fs/hfs interger overflow may lead to heap based out-of-bounds write (bsc#1237014)</li>
<li>CVE-2025-4382: Fixed TPM auto-decryption data exposure (bsc#1242971)</li>
<li>Restrict CLI access if the encrypted root device is automatically unlocked by
the TPM. LUKS password authentication is required for access to be granted</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Micro 6.1
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-6.1-308=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64)
<ul>
<li>grub2-2.12-slfo.1.1_2.1</li>
<li>grub2-debuginfo-2.12-slfo.1.1_2.1</li>
</ul>
</li>
<li>
SUSE Linux Micro 6.1 (noarch)
<ul>
<li>grub2-x86_64-efi-2.12-slfo.1.1_2.1</li>
<li>grub2-i386-pc-2.12-slfo.1.1_2.1</li>
<li>grub2-powerpc-ieee1275-2.12-slfo.1.1_2.1</li>
<li>grub2-arm64-efi-2.12-slfo.1.1_2.1</li>
<li>grub2-x86_64-xen-2.12-slfo.1.1_2.1</li>
<li>grub2-snapper-plugin-2.12-slfo.1.1_2.1</li>
</ul>
</li>
<li>
SUSE Linux Micro 6.1 (aarch64 s390x x86_64)
<ul>
<li>grub2-debugsource-2.12-slfo.1.1_2.1</li>
</ul>
</li>
<li>
SUSE Linux Micro 6.1 (s390x)
<ul>
<li>grub2-s390x-emu-2.12-slfo.1.1_2.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45774.html">https://www.suse.com/security/cve/CVE-2024-45774.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45775.html">https://www.suse.com/security/cve/CVE-2024-45775.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45776.html">https://www.suse.com/security/cve/CVE-2024-45776.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45777.html">https://www.suse.com/security/cve/CVE-2024-45777.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45778.html">https://www.suse.com/security/cve/CVE-2024-45778.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45779.html">https://www.suse.com/security/cve/CVE-2024-45779.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45780.html">https://www.suse.com/security/cve/CVE-2024-45780.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45781.html">https://www.suse.com/security/cve/CVE-2024-45781.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45782.html">https://www.suse.com/security/cve/CVE-2024-45782.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45783.html">https://www.suse.com/security/cve/CVE-2024-45783.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-49504.html">https://www.suse.com/security/cve/CVE-2024-49504.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-56737.html">https://www.suse.com/security/cve/CVE-2024-56737.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-56738.html">https://www.suse.com/security/cve/CVE-2024-56738.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0622.html">https://www.suse.com/security/cve/CVE-2025-0622.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0624.html">https://www.suse.com/security/cve/CVE-2025-0624.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0677.html">https://www.suse.com/security/cve/CVE-2025-0677.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0678.html">https://www.suse.com/security/cve/CVE-2025-0678.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0684.html">https://www.suse.com/security/cve/CVE-2025-0684.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0685.html">https://www.suse.com/security/cve/CVE-2025-0685.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0686.html">https://www.suse.com/security/cve/CVE-2025-0686.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0689.html">https://www.suse.com/security/cve/CVE-2025-0689.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-0690.html">https://www.suse.com/security/cve/CVE-2025-0690.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-1118.html">https://www.suse.com/security/cve/CVE-2025-1118.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-1125.html">https://www.suse.com/security/cve/CVE-2025-1125.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2025-4382.html">https://www.suse.com/security/cve/CVE-2025-4382.html</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1229163">https://bugzilla.suse.com/show_bug.cgi?id=1229163</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1229164">https://bugzilla.suse.com/show_bug.cgi?id=1229164</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230840">https://bugzilla.suse.com/show_bug.cgi?id=1230840</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231591">https://bugzilla.suse.com/show_bug.cgi?id=1231591</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1232411">https://bugzilla.suse.com/show_bug.cgi?id=1232411</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233606">https://bugzilla.suse.com/show_bug.cgi?id=1233606</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233608">https://bugzilla.suse.com/show_bug.cgi?id=1233608</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233609">https://bugzilla.suse.com/show_bug.cgi?id=1233609</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233610">https://bugzilla.suse.com/show_bug.cgi?id=1233610</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233612">https://bugzilla.suse.com/show_bug.cgi?id=1233612</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233613">https://bugzilla.suse.com/show_bug.cgi?id=1233613</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233614">https://bugzilla.suse.com/show_bug.cgi?id=1233614</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233615">https://bugzilla.suse.com/show_bug.cgi?id=1233615</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233616">https://bugzilla.suse.com/show_bug.cgi?id=1233616</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1233617">https://bugzilla.suse.com/show_bug.cgi?id=1233617</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1234958">https://bugzilla.suse.com/show_bug.cgi?id=1234958</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1234959">https://bugzilla.suse.com/show_bug.cgi?id=1234959</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1236316">https://bugzilla.suse.com/show_bug.cgi?id=1236316</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1236317">https://bugzilla.suse.com/show_bug.cgi?id=1236317</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237002">https://bugzilla.suse.com/show_bug.cgi?id=1237002</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237006">https://bugzilla.suse.com/show_bug.cgi?id=1237006</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237008">https://bugzilla.suse.com/show_bug.cgi?id=1237008</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237009">https://bugzilla.suse.com/show_bug.cgi?id=1237009</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237010">https://bugzilla.suse.com/show_bug.cgi?id=1237010</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237011">https://bugzilla.suse.com/show_bug.cgi?id=1237011</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237012">https://bugzilla.suse.com/show_bug.cgi?id=1237012</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237013">https://bugzilla.suse.com/show_bug.cgi?id=1237013</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1237014">https://bugzilla.suse.com/show_bug.cgi?id=1237014</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1242971">https://bugzilla.suse.com/show_bug.cgi?id=1242971</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1247242">https://bugzilla.suse.com/show_bug.cgi?id=1247242</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1249140">https://bugzilla.suse.com/show_bug.cgi?id=1249140</a>
</li>
</ul>
</div>