[El-errata] ELSA-2024-1063 Important: Oracle Linux 8 edk2 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Mar 7 11:00:22 UTC 2024
Oracle Linux Security Advisory ELSA-2024-1063
http://linux.oracle.com/errata/ELSA-2024-1063.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
edk2-ovmf-20220126gitbb1bba3d77-6.el8_9.6.noarch.rpm
aarch64:
edk2-aarch64-20220126gitbb1bba3d77-6.el8_9.6.noarch.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//edk2-20220126gitbb1bba3d77-6.el8_9.6.src.rpm
Related CVEs:
CVE-2023-45230
CVE-2023-45234
Description of changes:
[20220126gitbb1bba3d77-6.el8_9.6]
- edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Pa.patch [RHEL-21840 RHEL-21842]
- edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Un.patch [RHEL-21840 RHEL-21842]
- Resolves: RHEL-21842
(CVE-2023-45230 edk2: Buffer overflow in the DHCPv6 client via a long Server ID option [rhel-8])
- Resolves: RHEL-21850
(CVE-2023-45234 edk2: Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message [rhel-8])
More information about the El-errata
mailing list