ELSA-2024-11219

ULN >
Oracle Linux Errata repository >
ELSA-2024-11219

ELSA-2024-11219 - edk2:20240524 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-12-19

Description

[20240524-6.0.1.el9_5.3]
- edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch [RHEL-58631]
- Resolves: RHEL-58631
([Regression] HTTP Boot fails to work with edk2-ovmf-20231122-6.el9_4.2 and greater)
- edk2-OvmfPkg-ArmVirtPkg-Add-a-Fallback-RNG-RH-only.patch [RHEL-66230]
- Resolves: RHEL-66230
([Regression] [aarch64] HTTP Boot not working on old vCPU without virtio-rng device present [rhel-9.6])
- edk2-OvmfPkg-Add-a-Fallback-RNG-RH-only.patch [RHEL-65725]
- Resolves: RHEL-65725
([Regression] HTTP Boot not working on old vCPU without virtio-rng device present [rhel-9.6])
- edk2-OvmfPkg-VirtioGpuDxe-ignore-display-resolutions-smal.patch [RHEL-56248]
- edk2-OvmfPkg-QemuVideoDxe-ignore-display-resolutions-smal.patch [RHEL-56248]
- edk2-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch [RHEL-60833]
- Resolves: RHEL-56248
(507x510 display resolution should not crash the firmware [edk2,rhel-9.6])
- Resolves: RHEL-60833
(CVE-2024-38796 edk2: Integer overflows in PeCoffLoaderRelocateImage [rhel-9.6])

Related CVEs

CVE-2024-38796

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	edk2-20240524-6.0.1.el9_5.3.src.rpm	0f9cbeb23300d9ab28475e9a6d042eb51803716e2da6f974667b41018115bf2b	-	ol9_aarch64_appstream
	edk2-20240524-6.0.1.el9_5.3.src.rpm	0f9cbeb23300d9ab28475e9a6d042eb51803716e2da6f974667b41018115bf2b	-	ol9_aarch64_codeready_builder
	edk2-aarch64-20240524-6.0.1.el9_5.3.noarch.rpm	29a9f75782ec87c937b286b9c911cdd6c7ef8c342792c8d91900e5699559ed28	-	ol9_aarch64_appstream
	edk2-ovmf-20240524-6.0.1.el9_5.3.noarch.rpm	d74f26158516f67ac4e47f6519d44ffbb7b9a4d13ea1aa0cdca2bfaef0e7786e	-	ol9_aarch64_appstream
	edk2-tools-20240524-6.0.1.el9_5.3.aarch64.rpm	cd921140b74ac20e02b3701116d5c887fe8b5363eea849c7bd8878ada7d4cb1a	-	ol9_aarch64_codeready_builder
	edk2-tools-doc-20240524-6.0.1.el9_5.3.noarch.rpm	b907860c3e2a807c6376ebad2f77a27d5ad53b70b28ba567c35d4537c885a660	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	edk2-20240524-6.0.1.el9_5.3.src.rpm	0f9cbeb23300d9ab28475e9a6d042eb51803716e2da6f974667b41018115bf2b	-	ol9_x86_64_appstream
	edk2-20240524-6.0.1.el9_5.3.src.rpm	0f9cbeb23300d9ab28475e9a6d042eb51803716e2da6f974667b41018115bf2b	-	ol9_x86_64_codeready_builder
	edk2-aarch64-20240524-6.0.1.el9_5.3.noarch.rpm	29a9f75782ec87c937b286b9c911cdd6c7ef8c342792c8d91900e5699559ed28	-	ol9_x86_64_codeready_builder
	edk2-ovmf-20240524-6.0.1.el9_5.3.noarch.rpm	d74f26158516f67ac4e47f6519d44ffbb7b9a4d13ea1aa0cdca2bfaef0e7786e	-	ol9_x86_64_appstream
	edk2-tools-20240524-6.0.1.el9_5.3.x86_64.rpm	147151eb438b4744335301aa0235f4bef83f3ce45a7d963a27a3a599f68ccdad	-	ol9_x86_64_codeready_builder
	edk2-tools-doc-20240524-6.0.1.el9_5.3.noarch.rpm	b907860c3e2a807c6376ebad2f77a27d5ad53b70b28ba567c35d4537c885a660	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691