FEDORA-2023-e821b64a4c — security update for edk2

stable

edk2-20221117gitfff6d81270b5-14.fc36

FEDORA-2023-e821b64a4c created by kraxel 4 months ago for Fedora 36

add sub-package with xen build (resolves: #2170730)

update openssl (CVE-2023-0286, CVE-2023-0215, CVE-2022-4450, CVE-2022-4304).

cherry-pick aarch64 bugfixes, set firmware build release date, add ext4 sub-package

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2023-e821b64a4c

This update has been submitted for testing by kraxel.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update has obsoleted edk2-20221117gitfff6d81270b5-13.fc36, and has inherited its bugs and notes.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'passed'.

4 months ago

This update has been pushed to testing.

4 months ago

This update has been submitted for stable by bodhi.

3 months ago

This update has been pushed to stable.

3 months ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

passed

Builds

edk2-20221117gitfff6d81270b5-14.fc36

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

4 months ago

in testing

4 months ago

in stable

3 months ago

approved

3 months ago

BZ#2167867 CVE-2023-0286 edk2: openssl: X.400 address type confusion in X.509 GeneralName [fedora-36]

BZ#2167889 CVE-2023-0215 edk2: openssl: use-after-free following BIO_new_NDEF [fedora-36]

BZ#2167906 CVE-2022-4450 edk2: openssl: double free after calling PEM_read_bio_ex [fedora-36]

BZ#2167917 CVE-2022-4304 edk2: openssl: timing attack in RSA Decryption implementation [fedora-36]

BZ#2170730 Regression: OvmfPkgX64 no longer supports Xen HVM

edk2-20221117gitfff6d81270b5-14.fc36

Automated Test Results

passed