Oracle7: ELSA-2024-12794: edk2 security Moderate (aarch64) Security Advisory Updates

oracle

October 21, 2024

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[1.7.1] - Create new 1.7.1 release for OL7 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access [Orabug: 36990130] {CVE-2024-1298} - EDK2: In the Linux kernel before 6.9, an untrusted hypervisor can inject virtual interrupt 29 (#VC) at any point in time and can trigger its handler. [Orabug: 36990244] {CVE-2024-25742} - EDK2: EDK2âs Network Package is susceptible to a predictable TCP Initial Sequence Number. [Orabug: 36990198] {CVE-2023-45236} - EDK2: EDK2âs Network Package is susceptible to a predictable TCP Initial Sequence Number. [Orabug: 36990210] {CVE-2023-45237}

Topics Covered

No topics assigned

SRPMs

http://oss.oracle.com/ol7/SRPMS-updates//edk2-1.7.1-3.el7.src.rpm

x86_64

aarch64

AAVMF-1.7.1-3.el7.noarch.rpm

Related CVEs: CVE-2024-1298 CVE-2023-45236 CVE-2023-45237 CVE-2024-25742

Topics Covered

No topics assigned

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Oracle7: ELSA-2024-12794: edk2 security Moderate (aarch64) Security Advisory Updates

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Oracle7: ELSA-2024-12794: edk2 security Moderate (aarch64) Security Advisory Updates

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!