ELSA-2024-20865

ELSA-2024-20865 - edk2 security update

Type:SECURITY
Impact:MODERATE
Release Date:2024-04-24

Description


* Tue Feb 27 2024 Aaron Young
- Create new 20240227 release for OL8 which includes the following fixed CVEs:
{CVE-2023-45229} {CVE-2023-45230} {CVE-2023-45231} {CVE-2023-45232} {CVE-2023-45233} {CVE-2023-45234} {CVE-2023-45235} {CVE-2022-36763} {CVE-2022-36764} {CVE-2022-36765}
- Update to OpenSSL 3.0.10 which includes the following fixed CVEs:
{CVE-2023-2975} {CVE-2023-1255} {CVE-2023-0401} {CVE-2023-0217} {CVE-2023-0216} {CVE-2023-0215} {CVE-2022-4203} {CVE-2022-3996} {CVE-2022-3602} {CVE-2022-3786} {CVE-2022-3358} {CVE-2022-2274} {CVE-2022-1473} {CVE-2022-1434} {CVE-2022-1343} {CVE-2021-4044} {CVE-2021-23839}

* Tue Aug 22 2023 Aaron Young
- Create new 20230822.cvm release for OL8


Related CVEs


CVE-2023-45230
CVE-2023-45235
CVE-2022-36765
CVE-2023-45229
CVE-2023-45231
CVE-2023-45233
CVE-2022-36764
CVE-2023-45234
CVE-2022-36763
CVE-2023-45232

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) edk2-20240227-5.el8.src.rpm241ab2257953cd7c570aca2262dd31802e2cd18a85bc8c9e70b7b75270136d6d-ol8_aarch64_distro_builder
edk2-20240227-5.el8.src.rpm241ab2257953cd7c570aca2262dd31802e2cd18a85bc8c9e70b7b75270136d6d-ol8_aarch64_kvm_appstream
edk2-tools-20240227-5.el8.aarch64.rpm4f27ccbc8f35a732e108c8015d2c0c792e8e11637fac9c76b55cf09c8cad2465-ol8_aarch64_distro_builder
Oracle Linux 8 (x86_64) edk2-20240227-5.el8.src.rpm241ab2257953cd7c570aca2262dd31802e2cd18a85bc8c9e70b7b75270136d6d-ol8_x86_64_distro_builder
edk2-20240227-5.el8.src.rpm241ab2257953cd7c570aca2262dd31802e2cd18a85bc8c9e70b7b75270136d6d-ol8_x86_64_kvm_appstream
edk2-tools-20240227-5.el8.x86_64.rpm34aac9ae4368e15239fd21fddd77d359cdb3e7c73cdb7b89a6e249030c34c1b9-ol8_x86_64_distro_builder



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete