A grub2 security update has been released for Debian GNU/Linux 9 Extended LTS to address several issues in GRUB2’s font handling code that could result in crashes and potentially the execution of arbitrary code.

ELA-760-1 grub2 security update

Package : grub2
Version : 2.02~beta3-5+deb9u3 (stretch)

Related CVEs :
CVE-2022-2601
CVE-2022-3775

Several issues were found in GRUB2’s font handling code, which could result in crashes and potentially execution of arbitrary code.

  ELA-760-1 grub2 security update