ELSA-2018-3090

ELSA-2018-3090 - ovmf security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2018-11-05

Description


[20180508-3.gitee3198e672e2.el7]
- ovmf-redhat-provide-virtual-bundled-OpenSSL-in-OVMF.patch [bz#1607792]
- Resolves: bz#1607792
(add 'Provides: bundled(openssl) = 1.1.0h' to the spec file)

[20180508-2.gitee3198e672e2]
- OvmfPkg/PlatformBootManagerLib: connect consoles unconditionally [bz#1577546]
- build OVMF varstore template with SB enabled / certs enrolled [bz#1561128]
- connect Virtio RNG devices again [bz#1579518]
- Resolves: bz#1577546
(no input consoles connected under certain circumstances)
- Resolves: bz#1561128
(OVMF Secure boot enablement (enrollment of default keys))
- Resolves: bz#1579518
(EFI_RNG_PROTOCOL no longer produced for virtio-rng)

[20180508-1.gitee3198e672e2]
- Rebase to [bz#1559542]
- Resolves: bz#1559542
(Rebase OVMF for RHEL-7.6)


Related CVEs


CVE-2018-0739

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) ovmf-20180508-3.gitee3198e672e2.el7.src.rpmc8ec1df50d8363ce29d5da15a50202c8ELSA-2019-2125
OVMF-20180508-3.gitee3198e672e2.el7.noarch.rpm90c0b7b57932da0ce046a57b1848d5dbELSA-2020-5861



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete