[El-errata] ELSA-2014-1801 Moderate: Oracle Linux 7 shim security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Nov 5 11:09:43 PST 2014
Oracle Linux Security Advisory ELSA-2014-1801
https://access.redhat.com/errata/RHSA-2014:1801.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
mokutil-0.7-8.0.1.el7_0.x86_64.rpm
shim-0.7-8.0.1.el7_0.x86_64.rpm
shim-unsigned-0.7-8.0.1.el7_0.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/shim-0.7-8.0.1.el7_0.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/shim-signed-0.7-8.0.1.el7_0.src.rpm
Description of changes:
shim
[0.7-8.0.1]
- update Oracle Linux certificates (Alexey Petrenko)
- replace securebootca.cer (Alexey Petrenko)
[0.7-8]
- out-of-bounds memory read flaw in DHCPv6 packet processing
Resolves: CVE-2014-3675
- heap-based buffer overflow flaw in IPv6 address parsing
Resolves: CVE-2014-3676
- memory corruption flaw when processing Machine Owner Keys (MOKs)
Resolves: CVE-2014-3677
[0.7-7]
- Use the right key for ARM Aarch64.
[0.7-6]
- Preliminary build for ARM Aarch64.
shim-signed
[0.7-8.0.1]
- Oracle Linux certificates (Alexey Petrenko)
[0.7-8]
- out-of-bounds memory read flaw in DHCPv6 packet processing
Resolves: CVE-2014-3675
- heap-based buffer overflow flaw in IPv6 address parsing
Resolves: CVE-2014-3676
- memory corruption flaw when processing Machine Owner Keys (MOKs)
Resolves: CVE-2014-3677
[0.7-5.2]
- Get the right signatures on shim-redhat.efi
Related: rhbz#1064449
[0.7-5.1]
- Update for signed shim for RHEL 7
Resolves: rhbz#1064449
More information about the El-errata
mailing list