ELSA-2024-1063 - edk2 security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2024-03-05 |
Description
[20220126gitbb1bba3d77-6.el8_9.6]
- edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Pa.patch [RHEL-21840 RHEL-21842]
- edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Un.patch [RHEL-21840 RHEL-21842]
- Resolves: RHEL-21842
(CVE-2023-45230 edk2: Buffer overflow in the DHCPv6 client via a long Server ID option [rhel-8])
- Resolves: RHEL-21850
(CVE-2023-45234 edk2: Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message [rhel-8])
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory | Channel Label |
|
| Oracle Linux 8 (aarch64) | edk2-20220126gitbb1bba3d77-6.el8_9.6.src.rpm | a7599d6969b3c5419f7419768a6b5e7a | - | ol8_aarch64_appstream |
| edk2-aarch64-20220126gitbb1bba3d77-6.el8_9.6.noarch.rpm | e8e2fac706a9246d93ac5217fc2a24be | - | ol8_aarch64_appstream |
|
| Oracle Linux 8 (x86_64) | edk2-20220126gitbb1bba3d77-6.el8_9.6.src.rpm | a7599d6969b3c5419f7419768a6b5e7a | - | ol8_x86_64_appstream |
| edk2-ovmf-20220126gitbb1bba3d77-6.el8_9.6.noarch.rpm | 0ad21a90b6faf491cc352cb27c756f04 | - | ol8_x86_64_appstream |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
