[El-errata] ELBA-2020-5905 Oracle Linux 8 grub2 bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Fri Oct 30 11:48:26 PDT 2020


Oracle Linux Bug Fix Advisory ELBA-2020-5905

http://linux.oracle.com/errata/ELBA-2020-5905.html

The following updated rpms for Oracle Linux 8 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
grub2-common-2.02-87.0.1.el8_2.noarch.rpm
grub2-efi-aa64-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-efi-ia32-2.02-87.0.1.el8_2.x86_64.rpm
grub2-efi-ia32-cdboot-2.02-87.0.1.el8_2.x86_64.rpm
grub2-efi-ia32-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-efi-x64-2.02-87.0.1.el8_2.x86_64.rpm
grub2-efi-x64-cdboot-2.02-87.0.1.el8_2.x86_64.rpm
grub2-efi-x64-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-pc-2.02-87.0.1.el8_2.x86_64.rpm
grub2-pc-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-tools-2.02-87.0.1.el8_2.x86_64.rpm
grub2-tools-efi-2.02-87.0.1.el8_2.x86_64.rpm
grub2-tools-extra-2.02-87.0.1.el8_2.x86_64.rpm
grub2-tools-minimal-2.02-87.0.1.el8_2.x86_64.rpm
fwupd-1.1.4-7.0.1.el8_2.x86_64.rpm

aarch64:
grub2-common-2.02-87.0.1.el8_2.noarch.rpm
grub2-efi-aa64-2.02-87.0.1.el8_2.aarch64.rpm
grub2-efi-aa64-cdboot-2.02-87.0.1.el8_2.aarch64.rpm
grub2-efi-aa64-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-efi-ia32-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-efi-x64-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-pc-modules-2.02-87.0.1.el8_2.noarch.rpm
grub2-tools-2.02-87.0.1.el8_2.aarch64.rpm
grub2-tools-extra-2.02-87.0.1.el8_2.aarch64.rpm
grub2-tools-minimal-2.02-87.0.1.el8_2.aarch64.rpm
fwupd-1.1.4-7.0.1.el8_2.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/grub2-2.02-87.0.1.el8_2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/fwupd-1.1.4-7.0.1.el8_2.src.rpm



Description of changes:

grub2
[2.02-87.0.1]
- Fix tftp code, that was broken after disabling priority queue [Orabug: 
31832896]
- Add CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 to the list 
[Orabug: 31225072]
- Update signing certificate for efi binaries
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 
30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Copy symvers.gz to /boot during kernel install [Orabug: 29773086]
- Insert Unbreakable Enterprise Kernel text into BLS config file 
[Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 
19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI 
platforms [Orabug: 19231481]
- Put "with" in menuentry instead of "using" [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

fwupd
[1.1.4-7.0.1.el8_2]
- Build with the updated Oracle certificate
- Use oraclesecureboot301 as certdir [Orabug: 29881368]
- Use new signing certificate (Alex Burmashev)

[1.1.4-7]
- Add signing with redhatsecureboot503 cert
Related: CVE-2020-10713





More information about the El-errata mailing list