A grub2 security update has been released for Debian GNU/Linux 9 Extended LTS to address several issues in GRUB2’s font handling code that could result in crashes and potentially the execution of arbitrary code.
ELA-760-1 grub2 security update
Package : grub2
ELA-760-1 grub2 security update
Version : 2.02~beta3-5+deb9u3 (stretch)
Related CVEs :
CVE-2022-2601
CVE-2022-3775
Several issues were found in GRUB2’s font handling code, which could result in crashes and potentially execution of arbitrary code.
