Oracle alert ELSA-2014-1801 (shim)

From:
    	     
 
Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> 
To:
    	     
 
el-errata@oss.oracle.com 
Subject:
    	     
 
[El-errata] ELSA-2014-1801 Moderate: Oracle Linux 7 shim security update 
Date:
    	     
 
Wed, 05 Nov 2014 11:09:43 -0800
Message-ID:
    	     
 
<545A75F7.5080407@oracle.com>
Oracle Linux Security Advisory ELSA-2014-1801

https://access.redhat.com/errata/RHSA-2014:1801.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
mokutil-0.7-8.0.1.el7_0.x86_64.rpm
shim-0.7-8.0.1.el7_0.x86_64.rpm
shim-unsigned-0.7-8.0.1.el7_0.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/shim-0.7-8.0.1.el...
http://oss.oracle.com/ol7/SRPMS-updates/shim-signed-0.7-8...



Description of changes:

shim
[0.7-8.0.1]
- update Oracle Linux certificates (Alexey Petrenko)
- replace securebootca.cer (Alexey Petrenko)

[0.7-8]
- out-of-bounds memory read flaw in DHCPv6 packet processing
   Resolves: CVE-2014-3675
- heap-based buffer overflow flaw in IPv6 address parsing
   Resolves: CVE-2014-3676
- memory corruption flaw when processing Machine Owner Keys (MOKs)
   Resolves: CVE-2014-3677

[0.7-7]
- Use the right key for ARM Aarch64.

[0.7-6]
- Preliminary build for ARM Aarch64.

shim-signed
[0.7-8.0.1]
- Oracle Linux certificates (Alexey Petrenko)

[0.7-8]
- out-of-bounds memory read flaw in DHCPv6 packet processing
   Resolves: CVE-2014-3675
- heap-based buffer overflow flaw in IPv6 address parsing
   Resolves: CVE-2014-3676
- memory corruption flaw when processing Machine Owner Keys (MOKs)
   Resolves: CVE-2014-3677

[0.7-5.2]
- Get the right signatures on shim-redhat.efi
   Related: rhbz#1064449

[0.7-5.1]
- Update for signed shim for RHEL 7
   Resolves: rhbz#1064449


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata