ELBA-2025-32774
- ULN >
- Oracle Linux Errata repository >
- ELBA-2025-32774
ELBA-2025-32774 - edk2 bug fix update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2025-03-20 |
Description
[20250102-6]
- Create new 20250102 release for OL9 which includes the following fixed CVEs:
- EDK2: EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network [Orabug: 37414309] {CVE-2024-38796}
- Update to OpenSSL 3.0.15 which includes the following fixed CVEs:
{CVE-2023-4807} {CVE-2023-5363} {CVE-2023-5678} {CVE-2023-6129} {CVE-2023-6237} {CVE-2024-0727} {CVE-2024-2511} {CVE-2024-4603} {CVE-2024-4741} {CVE-2024-5535} {CVE-2024-6119}
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | edk2-20250102-6.el9.src.rpm | f2b17ec0f908807251fbe8ff657c5b50281075ff0ce1aa1cbd782c5a86f2e976 | - | ol9_aarch64_developer_kvm_utils |
| edk2-20250102-6.el9.src.rpm | f2b17ec0f908807251fbe8ff657c5b50281075ff0ce1aa1cbd782c5a86f2e976 | - | ol9_aarch64_kvm_utils | |
| edk2-tools-20250102-6.el9.aarch64.rpm | f4d342edab17f6a97404f8e60b626ed6dc8f1d678cdbdded00bf52ce345c46da | - | ol9_aarch64_developer_kvm_utils | |
| Oracle Linux 9 (x86_64) | edk2-20250102-6.el9.src.rpm | f2b17ec0f908807251fbe8ff657c5b50281075ff0ce1aa1cbd782c5a86f2e976 | - | ol9_x86_64_developer_kvm_utils |
| edk2-20250102-6.el9.src.rpm | f2b17ec0f908807251fbe8ff657c5b50281075ff0ce1aa1cbd782c5a86f2e976 | - | ol9_x86_64_kvm_utils | |
| edk2-tools-20250102-6.el9.x86_64.rpm | 5413ff7354418e2f857f8f950d4645b638943d9f421f3c772c53d9cbfca864ab | - | ol9_x86_64_developer_kvm_utils | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
