Stay Connected:

ELSA-2023-2932

ELSA-2023-2932 - edk2 security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2023-05-24

Description


[20220126gitbb1bba3d77-4]
- edk2-openssl-update.patch [bz#2164531 bz#2164543 bz#2164558 bz#2164581]
- edk2-rh-openssl-add-crypto-bn-rsa_sup_mul.c-to-file-list.patch [bz#2164531 bz#2164543 bz#2164558 bz#2164581]
- Resolves: bz#2164531
(CVE-2023-0286 edk2: openssl: X.400 address type confusion in X.509 GeneralName [rhel-8])
- Resolves: bz#2164543
(CVE-2022-4304 edk2: openssl: timing attack in RSA Decryption implementation [rhel-8])
- Resolves: bz#2164558
(CVE-2023-0215 edk2: openssl: use-after-free following BIO_new_NDEF [rhel-8])
- Resolves: bz#2164581
(CVE-2022-4450 edk2: openssl: double free after calling PEM_read_bio_ex [rhel-8])


Related CVEs


CVE-2023-0286
CVE-2022-4450
CVE-2022-4304
CVE-2023-0215

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) edk2-20220126gitbb1bba3d77-4.el8.src.rpm341dc468c86eaeba0e827f8abda68f3faeca5e9d9f55b18845eb1348e999e699-ol8_aarch64_appstream
edk2-20220126gitbb1bba3d77-4.el8.src.rpm341dc468c86eaeba0e827f8abda68f3faeca5e9d9f55b18845eb1348e999e699-ol8_aarch64_appstream_developer
edk2-20220126gitbb1bba3d77-4.el8.src.rpm341dc468c86eaeba0e827f8abda68f3faeca5e9d9f55b18845eb1348e999e699-ol8_aarch64_distro_builder
edk2-aarch64-20220126gitbb1bba3d77-4.el8.noarch.rpm895bfa68f4140d7e40cba4117f47e9f8acaa1072182bce0d9f9626f61a61faf7-ol8_aarch64_appstream
edk2-aarch64-20220126gitbb1bba3d77-4.el8.noarch.rpm895bfa68f4140d7e40cba4117f47e9f8acaa1072182bce0d9f9626f61a61faf7-ol8_aarch64_appstream_developer
Oracle Linux 8 (x86_64) edk2-20220126gitbb1bba3d77-4.el8.src.rpm341dc468c86eaeba0e827f8abda68f3faeca5e9d9f55b18845eb1348e999e699-ol8_x86_64_appstream
edk2-20220126gitbb1bba3d77-4.el8.src.rpm341dc468c86eaeba0e827f8abda68f3faeca5e9d9f55b18845eb1348e999e699-ol8_x86_64_appstream_developer
edk2-20220126gitbb1bba3d77-4.el8.src.rpm341dc468c86eaeba0e827f8abda68f3faeca5e9d9f55b18845eb1348e999e699-ol8_x86_64_distro_builder
edk2-ovmf-20220126gitbb1bba3d77-4.el8.noarch.rpm172d7c719ea4373d40b5e4980d02a43be987111c24189d944b9177bd5f28dcad-ol8_x86_64_appstream
edk2-ovmf-20220126gitbb1bba3d77-4.el8.noarch.rpm172d7c719ea4373d40b5e4980d02a43be987111c24189d944b9177bd5f28dcad-ol8_x86_64_appstream_developer



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights