ELBA-2025-32775
- ULN >
- Oracle Linux Errata repository >
- ELBA-2025-32775
ELBA-2025-32775 - edk2 bug fix update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2025-03-20 |
Description
[20250102-6]
- Create new 20250102 release for OL8 which includes the following fixed CVEs:
- EDK2: EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network [Orabug: 37414309] {CVE-2024-38796}
- Update to OpenSSL 3.0.15 which includes the following fixed CVEs:
{CVE-2023-4807} {CVE-2023-5363} {CVE-2023-5678} {CVE-2023-6129} {CVE-2023-6237} {CVE-2024-0727} {CVE-2024-2511} {CVE-2024-4603} {CVE-2024-4741} {CVE-2024-5535} {CVE-2024-6119}
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 8 (aarch64) | edk2-20250102-6.el8.src.rpm | af87798b4b9c50e2f841c1c7fcba2e44d6e8cf2238b86a85e937dc256d5f79ef | - | ol8_aarch64_distro_builder |
| edk2-20250102-6.el8.src.rpm | af87798b4b9c50e2f841c1c7fcba2e44d6e8cf2238b86a85e937dc256d5f79ef | - | ol8_aarch64_kvm_appstream | |
| edk2-tools-20250102-6.el8.aarch64.rpm | 1520a69e6c01fa08d40cbe700b97abad30e56b3f0291bfb5a0ff9d6d499b1c07 | - | ol8_aarch64_distro_builder | |
| Oracle Linux 8 (x86_64) | edk2-20250102-6.el8.src.rpm | af87798b4b9c50e2f841c1c7fcba2e44d6e8cf2238b86a85e937dc256d5f79ef | - | ol8_x86_64_distro_builder |
| edk2-20250102-6.el8.src.rpm | af87798b4b9c50e2f841c1c7fcba2e44d6e8cf2238b86a85e937dc256d5f79ef | - | ol8_x86_64_kvm_appstream | |
| edk2-tools-20250102-6.el8.x86_64.rpm | 7487024c12dee14ad7a1d1fe2a0592f15521045afaeb8c0891eeed135e518f96 | - | ol8_x86_64_distro_builder | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
