1. Home
  2. Security Advisories
  3. Oracle Linux
  4. ELSA-2019-4668

[ELSA-2019-4668] edk2 security update

Severity Important
Affected Packages 1
CVEs 11
Info Packages References Vulnerabilities

[1:1.2-5.el7]
- Update spec file to remove 'modprobe kvm-intel' and remove --enable-kvm arg to ovmf_vars_generator so qemu will not require kvm kernel module. (Aaron Young)
- Update spec file to modprobe kvm_intel module prior to running qemu to enroll default keys. (Aaron Young)
- Enroll Oracle cert/key for OL secureboot support. (Aaron Young)

[1:1.2-2.el7]
- Change Image.c image load error to DEBUG_WARN from DEBUG_ERROR since it is normal for some images to fail to load if the associated hardware is not present. Such is the case with Ramfb. (Aaron Young) [Orabug: 28868674]
- Fix AAVMF build. Pull in OpenSSL code (as is done for x86_64) (Aaron Young)
- Update AAVMF change log for version 1.2 (Aaron Young)

[1:1.2-1.el7]
- Update spec files and OVMF change log to version 1.2

Package Affected Version
pkg:rpm/oraclelinux/AAVMF?distro=oraclelinux-7 < 1.2-5.el7
ID
ELSA-2019-4668
Severity
important
URL
https://linux.oracle.com/errata/ELSA-2019-4668.html
Published
2019-06-06T00:00:00
(5 years ago)
Modified
2019-06-06T00:00:00
(5 years ago)
Rights
Copyright 2019 Oracle, Inc.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/oraclelinux/AAVMF?distro=oraclelinux-7 oraclelinux AAVMF < 1.2-5.el7 oraclelinux-7
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date