ELSA-2019-4668 - edk2 security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2019-06-06 |
Description
[1:1.2-5.el7]
- Update spec file to remove 'modprobe kvm-intel' and remove --enable-kvm arg to ovmf_vars_generator so qemu will not require kvm kernel module. (Aaron Young)
- Update spec file to modprobe kvm_intel module prior to running qemu to enroll default keys. (Aaron Young)
- Enroll Oracle cert/key for OL secureboot support. (Aaron Young)
[1:1.2-2.el7]
- Change Image.c image load error to DEBUG_WARN from DEBUG_ERROR since it is normal for some images to fail to load if the associated hardware is not present. Such is the case with Ramfb. (Aaron Young) [Orabug: 28868674]
- Fix AAVMF build. Pull in OpenSSL code (as is done for x86_64) (Aaron Young)
- Update AAVMF change log for version 1.2 (Aaron Young)
[1:1.2-1.el7]
- Update spec files and OVMF change log to version 1.2
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 7 (aarch64) | edk2-1.2-5.el7.src.rpm | 3fec915fc83be5373cec3887a64f4587 | ELSA-2020-5861 |
| AAVMF-1.2-5.el7.noarch.rpm | bf98a17b5d17b67a0e31e01f55df7d18 | ELSA-2020-5861 |
|
| Oracle Linux 7 (x86_64) | edk2-1.2-5.el7.src.rpm | 3fec915fc83be5373cec3887a64f4587 | ELSA-2020-5861 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
