ELSA-2023-0752

Описание

[2.06-46.0.4.el9_1.3]

• Bump SBAT metadata for grub to 3 [Orabug: 34872719]
• Fix CVE-2022-3775 [Orabug: 34871953]
• Enable signing for aarch64 EFI
• Fix signing certificate names
• Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]
• Replaced bugzilla.oracle.com references [Orabug: 34202300]
• Update provided certificate version to 202204 [JIRA: OLDIS-16371]
• Various coverity fixes [JIRA: OLDIS-16371]
• bump SBAT generation
• Update bug url [Orabug: 34202300]
• Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
• Update signing certificate [JIRA: OLDIS-16371]
• fix SBAT data [JIRA: OLDIS-16371]
• Update requires [JIRA: OLDIS-16371]
• Rebuild for SecureBoot signatures [Orabug: 33801813]
• Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
• Update Oracle SBAT data [Orabug: 32670033]
• Use new signing certificate [Orabug: 32670033]
• honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
• set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
• Update upstream references [Orabug: 26388226]
• Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
• Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
• Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-46.el9_1.3]

• Give up on redhat-sb-certs
• Resolves: CVE-2022-2601

[2.06-46.el9_1.2]

• CVE update (actually 2.06-49)
• Resolves: CVE-2022-2601