ELSA-2014-1801 - shim security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2014-11-05 |
Description
shim
[0.7-8.0.1]
- update Oracle Linux certificates (Alexey Petrenko)
- replace securebootca.cer (Alexey Petrenko)
[0.7-8]
- out-of-bounds memory read flaw in DHCPv6 packet processing
Resolves: CVE-2014-3675
- heap-based buffer overflow flaw in IPv6 address parsing
Resolves: CVE-2014-3676
- memory corruption flaw when processing Machine Owner Keys (MOKs)
Resolves: CVE-2014-3677
[0.7-7]
- Use the right key for ARM Aarch64.
[0.7-6]
- Preliminary build for ARM Aarch64.
shim-signed
[0.7-8.0.1]
- Oracle Linux certificates (Alexey Petrenko)
[0.7-8]
- out-of-bounds memory read flaw in DHCPv6 packet processing
Resolves: CVE-2014-3675
- heap-based buffer overflow flaw in IPv6 address parsing
Resolves: CVE-2014-3676
- memory corruption flaw when processing Machine Owner Keys (MOKs)
Resolves: CVE-2014-3677
[0.7-5.2]
- Get the right signatures on shim-redhat.efi
Related: rhbz#1064449
[0.7-5.1]
- Update for signed shim for RHEL 7
Resolves: rhbz#1064449
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 7 (x86_64) | shim-0.7-8.0.1.el7_0.src.rpm | 416450f3a4e7c04f6f1a20433e528da4 | ELBA-2019-4519 |
| shim-signed-0.7-8.0.1.el7_0.src.rpm | fded40f8d2edcd2871abb29eaa267cc9 | ELBA-2021-9196 |
| mokutil-0.7-8.0.1.el7_0.x86_64.rpm | 969579fe4103c2023db24e4648eb0635 | ELBA-2021-9196 |
| shim-0.7-8.0.1.el7_0.x86_64.rpm | d112ec1e3d4b34fa366345494220b1e6 | ELBA-2019-4519 |
| shim-unsigned-0.7-8.0.1.el7_0.x86_64.rpm | 794f5c0c127ff490744a53649b3c5311 | - |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
