ELSA-2024-11219
- ULN >
- Oracle Linux Errata repository >
- ELSA-2024-11219
ELSA-2024-11219 - edk2:20240524 security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2024-12-19 |
Description
[20240524-6.0.1.el9_5.3]
- edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch [RHEL-58631]
- Resolves: RHEL-58631
([Regression] HTTP Boot fails to work with edk2-ovmf-20231122-6.el9_4.2 and greater)
- edk2-OvmfPkg-ArmVirtPkg-Add-a-Fallback-RNG-RH-only.patch [RHEL-66230]
- Resolves: RHEL-66230
([Regression] [aarch64] HTTP Boot not working on old vCPU without virtio-rng device present [rhel-9.6])
- edk2-OvmfPkg-Add-a-Fallback-RNG-RH-only.patch [RHEL-65725]
- Resolves: RHEL-65725
([Regression] HTTP Boot not working on old vCPU without virtio-rng device present [rhel-9.6])
- edk2-OvmfPkg-VirtioGpuDxe-ignore-display-resolutions-smal.patch [RHEL-56248]
- edk2-OvmfPkg-QemuVideoDxe-ignore-display-resolutions-smal.patch [RHEL-56248]
- edk2-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch [RHEL-60833]
- Resolves: RHEL-56248
(507x510 display resolution should not crash the firmware [edk2,rhel-9.6])
- Resolves: RHEL-60833
(CVE-2024-38796 edk2: Integer overflows in PeCoffLoaderRelocateImage [rhel-9.6])
Related CVEs
| CVE-2024-38796 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | edk2-20240524-6.0.1.el9_5.3.src.rpm | 18cd1b2a115b9d2f782e454c72e19c7e | - | ol9_aarch64_appstream |
| edk2-20240524-6.0.1.el9_5.3.src.rpm | 18cd1b2a115b9d2f782e454c72e19c7e | - | ol9_aarch64_codeready_builder | |
| edk2-aarch64-20240524-6.0.1.el9_5.3.noarch.rpm | e9dd76cc0b24e846d3feed9274a49eea | - | ol9_aarch64_appstream | |
| edk2-ovmf-20240524-6.0.1.el9_5.3.noarch.rpm | 65d1634a964439f975fb92d8fad96b40 | - | ol9_aarch64_appstream | |
| edk2-tools-20240524-6.0.1.el9_5.3.aarch64.rpm | bc09b5a539721ca6f6af719343171c67 | - | ol9_aarch64_codeready_builder | |
| edk2-tools-doc-20240524-6.0.1.el9_5.3.noarch.rpm | 02091ac6f4910116429a4515f39bc819 | - | ol9_aarch64_codeready_builder | |
| Oracle Linux 9 (x86_64) | edk2-20240524-6.0.1.el9_5.3.src.rpm | 18cd1b2a115b9d2f782e454c72e19c7e | - | ol9_x86_64_appstream |
| edk2-20240524-6.0.1.el9_5.3.src.rpm | 18cd1b2a115b9d2f782e454c72e19c7e | - | ol9_x86_64_codeready_builder | |
| edk2-aarch64-20240524-6.0.1.el9_5.3.noarch.rpm | e9dd76cc0b24e846d3feed9274a49eea | - | ol9_x86_64_codeready_builder | |
| edk2-ovmf-20240524-6.0.1.el9_5.3.noarch.rpm | 65d1634a964439f975fb92d8fad96b40 | - | ol9_x86_64_appstream | |
| edk2-tools-20240524-6.0.1.el9_5.3.x86_64.rpm | 57974f6c94ab9ca3c07fcd32bd6cc12e | - | ol9_x86_64_codeready_builder | |
| edk2-tools-doc-20240524-6.0.1.el9_5.3.noarch.rpm | 02091ac6f4910116429a4515f39bc819 | - | ol9_x86_64_codeready_builder | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:
- Oracle customers - enter a support request
- Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process
