ELSA-2019-4668

ELSA-2019-4668 - edk2 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2019-06-06

Description

[1:1.2-5.el7]
- Update spec file to remove 'modprobe kvm-intel' and remove --enable-kvm arg to ovmf_vars_generator so qemu will not require kvm kernel module. (Aaron Young)
- Update spec file to modprobe kvm_intel module prior to running qemu to enroll default keys. (Aaron Young)
- Enroll Oracle cert/key for OL secureboot support. (Aaron Young)

[1:1.2-2.el7]
- Change Image.c image load error to DEBUG_WARN from DEBUG_ERROR since it is normal for some images to fail to load if the associated hardware is not present. Such is the case with Ramfb. (Aaron Young) [Orabug: 28868674]
- Fix AAVMF build. Pull in OpenSSL code (as is done for x86_64) (Aaron Young)
- Update AAVMF change log for version 1.2 (Aaron Young)

[1:1.2-1.el7]
- Update spec files and OVMF change log to version 1.2

Related CVEs

CVE-2017-5731

CVE-2017-5735

CVE-2018-12178

CVE-2018-12180

CVE-2018-12181

CVE-2017-5753

CVE-2017-5715

CVE-2017-5733

CVE-2017-5732

CVE-2017-5734

CVE-2018-3630

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 7 (aarch64)	edk2-1.2-5.el7.src.rpm	8e5bdd6ef591ed75a5a9c851e3974e9be922e741b026729afa0557a8d3510a0d	ELSA-2024-12794	ol7_aarch64_beta
	edk2-1.2-5.el7.src.rpm	8e5bdd6ef591ed75a5a9c851e3974e9be922e741b026729afa0557a8d3510a0d	ELSA-2024-12794	ol7_aarch64_latest
	edk2-1.2-5.el7.src.rpm	8e5bdd6ef591ed75a5a9c851e3974e9be922e741b026729afa0557a8d3510a0d	ELSA-2024-12794	ol7_aarch64_u7_base
	edk2-1.2-5.el7.src.rpm	8e5bdd6ef591ed75a5a9c851e3974e9be922e741b026729afa0557a8d3510a0d	ELSA-2024-12794	ol7_aarch64_u8_base
	edk2-1.2-5.el7.src.rpm	8e5bdd6ef591ed75a5a9c851e3974e9be922e741b026729afa0557a8d3510a0d	ELSA-2024-12794	ol7_aarch64_u9_base
	AAVMF-1.2-5.el7.noarch.rpm	1509531a50896681b5ff85174e61dd8f954902b0eae635702fd82b80adc7aefb	ELSA-2024-12794	ol7_aarch64_beta
	AAVMF-1.2-5.el7.noarch.rpm	1509531a50896681b5ff85174e61dd8f954902b0eae635702fd82b80adc7aefb	ELSA-2024-12794	ol7_aarch64_latest
	AAVMF-1.2-5.el7.noarch.rpm	1509531a50896681b5ff85174e61dd8f954902b0eae635702fd82b80adc7aefb	ELSA-2024-12794	ol7_aarch64_u7_base
	AAVMF-1.2-5.el7.noarch.rpm	1509531a50896681b5ff85174e61dd8f954902b0eae635702fd82b80adc7aefb	ELSA-2024-12794	ol7_aarch64_u8_base
	AAVMF-1.2-5.el7.noarch.rpm	1509531a50896681b5ff85174e61dd8f954902b0eae635702fd82b80adc7aefb	ELSA-2024-12794	ol7_aarch64_u9_base
Oracle Linux 7 (x86_64)	edk2-1.2-5.el7.src.rpm	8e5bdd6ef591ed75a5a9c851e3974e9be922e741b026729afa0557a8d3510a0d	ELSA-2024-12794	ol7_x86_64_kvm_utils

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team