ELSA-2023-2487

ULN >
Oracle Linux Errata repository >
ELSA-2023-2487

ELSA-2023-2487 - fwupd security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-05-15

Description

[1.8.10-2.0.1]
- Drop pesign.service restart in postun [Orabug: 34760075]
- Update signing certificate [JIRA: OLDIS-16371]
- Rebuild for SecureBoot signatures [Orabug: 33801813]
- Build with the updated Oracle certificate
- Use oraclesecureboot301 as certdir [Orabug: 29881368]
- Use new signing certificate (Alex Burmashev)
- Update SBAT data to include Oracle [Oracle: 33072886]

[1.8.10-2]
- Rebuild because distrobaker did entirely the wrong thing.
- Resolves: rhbz#2128384, needed for rhbz#2119436 and rhbz#2128384

[1.8.10-1]
- Rebase to latest upstream release to fix multiple ESP detection problems
- Resolves: rhbz#2128384, needed for rhbz#2119436 and rhbz#2128384

[1.7.10-1]
- New upstream release
- Resolves: rhbz#2129280

[1.7.9-2]
- Include the new dbx updates on the filesystem; clients typically do not have LVFS enabled.
- Resolves: rhbz#2120708

[1.7.8-1]
- New upstream release
- Resolves: rhbz#2059075

[1.7.4-3]
- Disable the Logitech bulkcontroller plugin to avoid adding a dep to protobuf-c
which lives in AppStream, not BaseOS.
- Use the efi_vendor variable from EFI-RPM
- Resolves: rhbz#2064904

[1.7.4-1]
- New upstream release
- Backport Fedora 34 changes
- Include support for Lenovo TBT4 Docking stations
- Do not cause systemd-modules-load failures
- Build against a new enough pesign
- Resolves: rhbz#2007520

[1.7.1-1]
- New upstream release
- Backport Fedora 34 changes
- Include support for Dell TBT4 Docking stations
- Resolves: rhbz#1974347
- Resolves: rhbz#1991426

[1.5.9-4]
- Rebuilt to use redhatsecureboot503 signatures
- Undo last Fedora sync to use the RHEL-specific patches
- Resolves: rhbz#2007520

[1.5.9-3]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[1.5.9-2]
- Rebuilt for RHEL 9 BETA for openssl 3.0
Related: rhbz#1971065

[1.5.9-1]
- Rebase to include the SBAT metadata section to allow fixing BootHole
- Resolves: rhbz#1951030

[1.5.5-4]
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

[1.5.5-3]
- Backport a patch from master to drop the python3-pillow dep
- Resolves: rhbz#1935838

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_appstream
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_appstream_developer
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_baseos_developer
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_baseos_latest
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_codeready_builder
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_codeready_builder_developer
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_aarch64_u2_baseos_base
	fwupd-1.8.10-2.0.1.el9.aarch64.rpm	72676f051e4479d98e595a03aa9a441caca516a4fa25515c7c319763b926faf3	-	ol9_aarch64_baseos_developer
	fwupd-1.8.10-2.0.1.el9.aarch64.rpm	72676f051e4479d98e595a03aa9a441caca516a4fa25515c7c319763b926faf3	-	ol9_aarch64_baseos_latest
	fwupd-1.8.10-2.0.1.el9.aarch64.rpm	72676f051e4479d98e595a03aa9a441caca516a4fa25515c7c319763b926faf3	-	ol9_aarch64_u2_baseos_base
	fwupd-devel-1.8.10-2.0.1.el9.aarch64.rpm	d2d2e01897861e315aba8a7b0411a12abeae1d52dc1874997efd6d173f86c665	-	ol9_aarch64_codeready_builder
	fwupd-devel-1.8.10-2.0.1.el9.aarch64.rpm	d2d2e01897861e315aba8a7b0411a12abeae1d52dc1874997efd6d173f86c665	-	ol9_aarch64_codeready_builder_developer
	fwupd-plugin-flashrom-1.8.10-2.0.1.el9.aarch64.rpm	5132d0821fc476d74f04ca37e54ba32c63ba23be4a5ff5ddd85c485a7d29ce78	-	ol9_aarch64_appstream
	fwupd-plugin-flashrom-1.8.10-2.0.1.el9.aarch64.rpm	5132d0821fc476d74f04ca37e54ba32c63ba23be4a5ff5ddd85c485a7d29ce78	-	ol9_aarch64_appstream_developer

Oracle Linux 9 (x86_64)	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_appstream
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_appstream_developer
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_baseos_developer
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_baseos_latest
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_codeready_builder
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_codeready_builder_developer
	fwupd-1.8.10-2.0.1.el9.src.rpm	3ea1919e8c9cc0e91d3ab4c4e8779aa5cf4c9bbb4d861420252aa0c253300beb	-	ol9_x86_64_u2_baseos_base
	fwupd-1.8.10-2.0.1.el9.x86_64.rpm	a889aa596c6d8b5923aa1721e75921364e5a07c7139117d1101fc555d4c015bb	-	ol9_x86_64_baseos_developer
	fwupd-1.8.10-2.0.1.el9.x86_64.rpm	a889aa596c6d8b5923aa1721e75921364e5a07c7139117d1101fc555d4c015bb	-	ol9_x86_64_baseos_latest
	fwupd-1.8.10-2.0.1.el9.x86_64.rpm	a889aa596c6d8b5923aa1721e75921364e5a07c7139117d1101fc555d4c015bb	-	ol9_x86_64_u2_baseos_base
	fwupd-devel-1.8.10-2.0.1.el9.x86_64.rpm	7a91043d91eb8543bb2a9fe2344e299584a0333294ee08a25081c8c0ddc5048d	-	ol9_x86_64_codeready_builder
	fwupd-devel-1.8.10-2.0.1.el9.x86_64.rpm	7a91043d91eb8543bb2a9fe2344e299584a0333294ee08a25081c8c0ddc5048d	-	ol9_x86_64_codeready_builder_developer
	fwupd-plugin-flashrom-1.8.10-2.0.1.el9.x86_64.rpm	5a028680dd5301ff321b5a0a3862ea6ef5a9d8d34241495cd76820888943cdd9	-	ol9_x86_64_appstream
	fwupd-plugin-flashrom-1.8.10-2.0.1.el9.x86_64.rpm	5a028680dd5301ff321b5a0a3862ea6ef5a9d8d34241495cd76820888943cdd9	-	ol9_x86_64_appstream_developer

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691