ELSA-2024-8935

ULN >
Oracle Linux Errata repository >
ELSA-2024-8935

ELSA-2024-8935 - edk2 security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-11-06

Description

[20231122-6.0.1.el9_4.4]
- Replace upstream references [Orabug:36569119]

[20231122-6.el9_4.4]
- edk2-Bumped-openssl-submodule-version-to-0205b5898872.patch [RHEL-55337]
- Resolves: RHEL-55337
(CVE-2024-6119 edk2/openssl: Possible denial of service in X.509 name checks [rhel-9.4.z])

Related CVEs

CVE-2024-6119

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	edk2-20231122-6.0.1.el9_4.4.src.rpm	b51685abf67c7cae8bd438037c222ed4	-	ol9_aarch64_appstream
	edk2-20231122-6.0.1.el9_4.4.src.rpm	b51685abf67c7cae8bd438037c222ed4	-	ol9_aarch64_codeready_builder
	edk2-aarch64-20231122-6.0.1.el9_4.4.noarch.rpm	b4f7481a409b3304c6ceba64cdc4217c	-	ol9_aarch64_appstream
	edk2-ovmf-20231122-6.0.1.el9_4.4.noarch.rpm	0a292c97b434980032307e296c11f676	-	ol9_aarch64_appstream
	edk2-tools-20231122-6.0.1.el9_4.4.aarch64.rpm	4333ae52447e64320b8d8cec91107ac2	-	ol9_aarch64_codeready_builder
	edk2-tools-doc-20231122-6.0.1.el9_4.4.noarch.rpm	b877a5e1398316ed15a85e144182da43	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	edk2-20231122-6.0.1.el9_4.4.src.rpm	b51685abf67c7cae8bd438037c222ed4	-	ol9_x86_64_appstream
	edk2-20231122-6.0.1.el9_4.4.src.rpm	b51685abf67c7cae8bd438037c222ed4	-	ol9_x86_64_codeready_builder
	edk2-aarch64-20231122-6.0.1.el9_4.4.noarch.rpm	b4f7481a409b3304c6ceba64cdc4217c	-	ol9_x86_64_codeready_builder
	edk2-ovmf-20231122-6.0.1.el9_4.4.noarch.rpm	0a292c97b434980032307e296c11f676	-	ol9_x86_64_appstream
	edk2-tools-20231122-6.0.1.el9_4.4.x86_64.rpm	12be50b3a5dab4a1ae5f3650cf030c9a	-	ol9_x86_64_codeready_builder
	edk2-tools-doc-20231122-6.0.1.el9_4.4.noarch.rpm	b877a5e1398316ed15a85e144182da43	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

Oracle customers - enter a support request
Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691