An update for grub2 is now available for openEuler-20.03-LTS-SP4 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2025-2795 Final 1.0 1.0 2025-12-12 Initial 2025-12-12 2025-12-12 openEuler SA Tool V1.0 2025-12-12 grub2 security update An update for grub2 is now available for openEuler-20.03-LTS-SP4 GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fix(es): A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after the module has been removed, causing the system to improperly access a previously freed memory location. This leads to a system crash or possible impacts in data confidentiality and integrity.(CVE-2025-61664) An update for grub2 is now available for openEuler-20.03-LTS-SP4. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium grub2 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2795 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-61664 https://nvd.nist.gov/vuln/detail/CVE-2025-61664 openEuler-20.03-LTS-SP4 grub2-2.04-43.oe2003sp4.src.rpm grub2-common-2.04-43.oe2003sp4.noarch.rpm grub2-efi-aa64-modules-2.04-43.oe2003sp4.noarch.rpm grub2-efi-ia32-modules-2.04-43.oe2003sp4.noarch.rpm grub2-efi-x64-modules-2.04-43.oe2003sp4.noarch.rpm grub2-help-2.04-43.oe2003sp4.noarch.rpm grub2-pc-modules-2.04-43.oe2003sp4.noarch.rpm grub2-debuginfo-2.04-43.oe2003sp4.aarch64.rpm grub2-debugsource-2.04-43.oe2003sp4.aarch64.rpm grub2-efi-aa64-2.04-43.oe2003sp4.aarch64.rpm grub2-efi-aa64-cdboot-2.04-43.oe2003sp4.aarch64.rpm grub2-tools-2.04-43.oe2003sp4.aarch64.rpm grub2-tools-extra-2.04-43.oe2003sp4.aarch64.rpm grub2-tools-minimal-2.04-43.oe2003sp4.aarch64.rpm grub2-debuginfo-2.04-43.oe2003sp4.x86_64.rpm grub2-debugsource-2.04-43.oe2003sp4.x86_64.rpm grub2-efi-ia32-2.04-43.oe2003sp4.x86_64.rpm grub2-efi-ia32-cdboot-2.04-43.oe2003sp4.x86_64.rpm grub2-efi-x64-2.04-43.oe2003sp4.x86_64.rpm grub2-efi-x64-cdboot-2.04-43.oe2003sp4.x86_64.rpm grub2-pc-2.04-43.oe2003sp4.x86_64.rpm grub2-tools-2.04-43.oe2003sp4.x86_64.rpm grub2-tools-efi-2.04-43.oe2003sp4.x86_64.rpm grub2-tools-extra-2.04-43.oe2003sp4.x86_64.rpm grub2-tools-minimal-2.04-43.oe2003sp4.x86_64.rpm A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after the module has been removed, causing the system to improperly access a previously freed memory location. This leads to a system crash or possible impacts in data confidentiality and integrity. 2025-12-12 CVE-2025-61664 openEuler-20.03-LTS-SP4 Medium 4.9 AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L grub2 security update 2025-12-12 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2795