SUSE-SU-2023:2234-1

Опубликовано: 17 мая 2023

Источник: suse-cvrf

Описание

Security update for ovmf

This update for ovmf fixes the following issues:

CVE-2021-38578: Fixed potential underflow in SmmEntryPointwhen computing BufferSize (bsc#1196741).
CVE-2019-14560: Fixed potential secure boot bypass caused by improper check of GetEfiGlobalVariable2() return value (bsc#1174246).
revert a patch to fix xen boot problems (bsc#1205613)

Список пакетов

SUSE Linux Enterprise Micro 5.3

qemu-ovmf-x86_64-202202-150400.5.10.1

qemu-uefi-aarch64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.4

qemu-ovmf-x86_64-202202-150400.5.10.1

qemu-uefi-aarch64-202202-150400.5.10.1

SUSE Linux Enterprise Module for Server Applications 15 SP4

ovmf-202202-150400.5.10.1

ovmf-tools-202202-150400.5.10.1

qemu-ovmf-x86_64-202202-150400.5.10.1

qemu-uefi-aarch64-202202-150400.5.10.1

openSUSE Leap 15.4

ovmf-202202-150400.5.10.1

ovmf-tools-202202-150400.5.10.1

qemu-ovmf-ia32-202202-150400.5.10.1

qemu-ovmf-x86_64-202202-150400.5.10.1

qemu-ovmf-x86_64-debug-202202-150400.5.10.1

qemu-uefi-aarch32-202202-150400.5.10.1

qemu-uefi-aarch64-202202-150400.5.10.1

openSUSE Leap Micro 5.3

qemu-ovmf-x86_64-202202-150400.5.10.1

qemu-uefi-aarch64-202202-150400.5.10.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20232234-1/
Link for SUSE-SU-2023:2234-1
https://lists.suse.com/pipermail/sle-updates/2023-May/029445.html
E-Mail link for SUSE-SU-2023:2234-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1174246
SUSE Bug 1174246
https://bugzilla.suse.com/1196741
SUSE Bug 1196741
https://bugzilla.suse.com/1205613
SUSE Bug 1205613
https://www.suse.com/security/cve/CVE-2019-14560/
SUSE CVE CVE-2019-14560 page
https://www.suse.com/security/cve/CVE-2021-38578/
SUSE CVE CVE-2021-38578 page

Описание

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Затронутые продукты

SUSE Linux Enterprise Micro 5.3:qemu-ovmf-x86_64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.3:qemu-uefi-aarch64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.4:qemu-ovmf-x86_64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.4:qemu-uefi-aarch64-202202-150400.5.10.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-14560.html
CVE-2019-14560
https://bugzilla.suse.com/1174246
SUSE Bug 1174246

Описание

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

Затронутые продукты

SUSE Linux Enterprise Micro 5.3:qemu-ovmf-x86_64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.3:qemu-uefi-aarch64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.4:qemu-ovmf-x86_64-202202-150400.5.10.1

SUSE Linux Enterprise Micro 5.4:qemu-uefi-aarch64-202202-150400.5.10.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-38578.html
CVE-2021-38578
https://bugzilla.suse.com/1196741
SUSE Bug 1196741

SUSE-SU-2023:2234-1

Описание

Список пакетов

SUSE Linux Enterprise Micro 5.3

SUSE Linux Enterprise Micro 5.4

SUSE Linux Enterprise Module for Server Applications 15 SP4

openSUSE Leap 15.4

openSUSE Leap Micro 5.3

Ссылки

Уязвимость: CVE-2019-14560

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2021-38578

Описание

Затронутые продукты

Ссылки