A grub2 security update has been released for Oracle Linux 7.

El-errata: ELSA-2020-5782 Important: Oracle Linux 7 grub2 security update

Oracle Linux Security Advisory ELSA-2020-5782

  http://linux.oracle.com/errata/ELSA-2020-5782.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
grub2-2.02-0.81.0.3.el7.x86_64.rpm
grub2-common-2.02-0.81.0.3.el7.noarch.rpm
grub2-efi-ia32-2.02-0.81.0.3.el7.x86_64.rpm
grub2-efi-ia32-modules-2.02-0.81.0.3.el7.noarch.rpm
grub2-efi-x64-2.02-0.81.0.3.el7.x86_64.rpm
grub2-efi-x64-modules-2.02-0.81.0.3.el7.noarch.rpm
grub2-pc-2.02-0.81.0.3.el7.x86_64.rpm
grub2-pc-modules-2.02-0.81.0.3.el7.noarch.rpm
grub2-tools-2.02-0.81.0.3.el7.x86_64.rpm
grub2-tools-extra-2.02-0.81.0.3.el7.x86_64.rpm
grub2-tools-minimal-2.02-0.81.0.3.el7.x86_64.rpm
grub2-efi-ia32-cdboot-2.02-0.81.0.3.el7.x86_64.rpm
grub2-efi-x64-cdboot-2.02-0.81.0.3.el7.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/grub2-2.02-0.81.0.3.el7.src.rpm


Description of changes:

[2.02-81.0.3]
- Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310,
CVE-2020-14311,
CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 [Orabug: 31225072]
- Update signing certificate for efi binaries