[ELSA-2023-6330] edk2 security, bug fix, and enhancement update
[20230524-3]
- edk2-OvmfPkg-AmdSev-fix-BdsPlatform.c-assertion-failure-d.patch [bz#2190244]
- edk2-OvmfPkg-IoMmuDxe-add-locking-to-IoMmuAllocateBounceB.patch [bz#2211060]
- edk2-OvmfPkg-AmdSevDxe-Shim-Reboot-workaround-RHEL-only.patch [bz#2218196]
- Resolves: bz#2190244
([EDK2] [AMDSERVER 9.3 Bug] OVMF AP Creation Fixes)
- Resolves: bz#2211060
(SEV-es guest randomly stuck at boot to hard drive screen from powerdown and boot again)
- Resolves: bz#2218196
(Add vtpm devices with OVMF.amdsev.fd causes VM reset)
[20230524-2]
- edk2-ArmVirt-add-VirtioSerialDxe-to-ArmVirtQemu-builds.patch [RHEL-643]
- edk2-ArmVirt-PlatformBootManagerLib-factor-out-IsVirtio.patch [RHEL-643]
- edk2-ArmVirt-PlatformBootManagerLib-factor-out-IsVirtioPc.patch [RHEL-643]
- edk2-ArmVirt-PlatformBootManagerLib-set-up-virtio-serial-.patch [RHEL-643]
- edk2-OvmfPkg-VirtioSerialDxe-use-TPL_NOTIFY.patch [RHEL-643]
- edk2-OvmfPkg-VirtioSerialDxe-Remove-noisy-debug-print-on-.patch [RHEL-643]
- edk2-OvmfPkg-PlatformInitLib-limit-phys-bits-to-46.patch [bz#2174749]
- edk2-Revert-OvmfPkg-disable-dynamic-mmio-window-rhel-only.patch [bz#2174749]
- edk2-UefiCpuPkg-MpInitLib-fix-apic-mode-for-cpu-hotplug.patch [bz#2124143]
- edk2-OvmfPkg-PlatformInitLib-check-PcdUse1GPageTable.patch [RHEL-644]
- edk2-OvmfPkg-OvmfPkgIa32X64-enable-1G-pages.patch [RHEL-644]
- edk2-OvmfPkg-MicrovmX64-enable-1G-pages.patch [RHEL-644]
- Resolves: RHEL-643
(add virtio serial support to armvirt)
- Resolves: bz#2174749
([edk2] re-enable dynamic mmio window)
- Resolves: bz#2124143
(ovmf must consider max cpu count not boot cpu count for apic mode [rhel-9])
- Resolves: RHEL-644
(enable gigabyte pages)
[20230524-1]
- Rebase to edk2-stable202305 tag [RHEL-585]
Resolves: RHEL-585
([rhel-9.3] rebase EDK2 to edk2-stable202305)
[20230301gitf80f052277c8-5]
- edk2-dbx-update-2023-05-09-black-lotus-edition.patch [RHEL-470]
- edk2-json-descriptors-explicitly-set-mode-split.patch [RHEL-469]
- Resolves: RHEL-470
(edk2: update variable store with latest dbx updates (may 9, black lotus edition))
- Resolves: RHEL-469
(explicitly set mode = split in firmware json description files)
[20230301gitf80f052277c8-4]
- edk2-OvmfPkg-Clarify-invariants-for-NestedInterruptTplLib.patch [bz#2189136]
- edk2-OvmfPkg-Relax-assertion-that-interrupts-do-not-occur.patch [bz#2189136]
- Resolves: bz#2189136
(windows 11 installation broken with edk2-20230301gitf80f052277c8-1.el9)
[20230301gitf80f052277c8-3]
- edk2-add-aarch64-qcow2-images.patch [bz#2186754]
- edk2-update-json-files.patch [bz#2186754]
- edk2-add-libvirt-version-conflict.patch [bz#2186754]
- edk2-add-dbx-update-blob-rh-only.patch [RHEL-377]
- edk2-spec-apply-dbx-update-rh-only.patch [RHEL-377]
- Resolves: bz#2186754
(edk2: Add firmware images in qcow2 format)
- Resolves: RHEL-377
(edk2: ship secure build variable store with latest dbx updates)
[20230301gitf80f052277c8-2]
- edk2-build-script-update.patch [bz#2183230]
- edk2-PcdDxeNxMemoryProtectionPolicy-update.patch [bz#2183230]
- Resolves: bz#2183230
([edk2] Instruction abort exception when booting a VM)
[20230301gitf80f052277c8-1]
- Rebase to edk2-stable202302 [RHEL-266]
- Resolves: RHEL-266
(rebase edk2 to 2023-02 stable tag)
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/edk2-tools?distro=oraclelinux-9 | < 20230524-3.el9 |
pkg:rpm/oraclelinux/edk2-tools-doc?distro=oraclelinux-9 | < 20230524-3.el9 |
pkg:rpm/oraclelinux/edk2-ovmf?distro=oraclelinux-9 | < 20230524-3.el9 |
pkg:rpm/oraclelinux/edk2-aarch64?distro=oraclelinux-9 | < 20230524-3.el9 |
- ID
- ELSA-2023-6330
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2023-6330.html
- Published
-
2023-11-11T00:00:00
(10 months ago) - Modified
-
2023-11-11T00:00:00
(10 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
- ALAS-2023-1762
- ALAS2-2023-2073
- ALAS2-2023-2097
- ALAS2-2024-2502
- ALPINE:CVE-2023-2650
- ALSA-2023:3722
- ALSA-2023:6330
- ALSA-2023:6919
- DSA-5417-1
- ELSA-2023-12768
- ELSA-2023-3722
- ELSA-2023-6919
- FEDORA-2023-026c8ba371
- FEDORA-2023-964eb00fc6
- FREEBSD:22DF5074-71CD-11EE-85EB-84A93843EB75
- FREEBSD:D86BECFE-05A4-11EE-9D4A-080027EDA32C
- FREEBSD:EB9A3C57-FF9E-11ED-A0D1-84A93843EB75
- GLSA-202402-08
- MS:CVE-2023-2650
- RHSA-2023:3722
- RHSA-2023:6330
- RHSA-2023:6919
- SSA:2023-150-01
- SUSE-SU-2023:1921-1
- SUSE-SU-2023:1940-1
- SUSE-SU-2023:1941-1
- SUSE-SU-2023:1958-1
- SUSE-SU-2023:1968-1
- SUSE-SU-2023:2234-1
- SUSE-SU-2023:2327-1
- SUSE-SU-2023:2328-1
- SUSE-SU-2023:2329-1
- SUSE-SU-2023:2330-1
- SUSE-SU-2023:2331-1
- SUSE-SU-2023:2332-1
- SUSE-SU-2023:2342-1
- SUSE-SU-2023:2343-1
- SUSE-SU-2023:2469-1
- SUSE-SU-2023:2470-1
- SUSE-SU-2023:2471-1
- SUSE-SU-2023:2620-1
- USN-6119-1
- USN-6188-1
- USN-6672-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2023-6330 | https://linux.oracle.com/errata/ELSA-2023-6330.html | |
CVE | CVE-2023-2650 | https://linux.oracle.com/cve/CVE-2023-2650.html | |
CVE | CVE-2019-14560 | https://linux.oracle.com/cve/CVE-2019-14560.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/edk2-tools?distro=oraclelinux-9 | oraclelinux | edk2-tools | < 20230524-3.el9 | oraclelinux-9 | ||
Affected | pkg:rpm/oraclelinux/edk2-tools-doc?distro=oraclelinux-9 | oraclelinux | edk2-tools-doc | < 20230524-3.el9 | oraclelinux-9 | ||
Affected | pkg:rpm/oraclelinux/edk2-ovmf?distro=oraclelinux-9 | oraclelinux | edk2-ovmf | < 20230524-3.el9 | oraclelinux-9 | ||
Affected | pkg:rpm/oraclelinux/edk2-aarch64?distro=oraclelinux-9 | oraclelinux | edk2-aarch64 | < 20230524-3.el9 | oraclelinux-9 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |