Synopsis

Important: ovmf security update

Type/Severity

Security Advisory: Important

Topic

An update for ovmf is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

OVMF (Open Virtual Machine Firmware) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.

Security Fix(es):

• edk2: Buffer Overflow in BlockIo service for RAM disk (CVE-2018-12180)
  

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat Enterprise Linux Server 7 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64
• Red Hat Enterprise Linux Server - AUS 7.6 x86_64
• Red Hat Enterprise Linux Server - TUS 7.6 x86_64
• Red Hat Enterprise Linux for ARM 64 7 aarch64
• Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64

Fixes

• BZ - 1683372 - CVE-2018-12180 edk2: Buffer Overflow in BlockIo service for RAM disk

CVEs

• CVE-2018-12180

References

• https://access.redhat.com/security/updates/classification/#important

Red Hat Enterprise Linux Server 7

SRPM
ovmf-20180508-3.gitee3198e672e2.el7_6.1.src.rpm	SHA-256: 86204a9e16bb8afbf2fc26e9a78dd95340f83fee70c92e5863a040a596052cb3
x86_64
OVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: f110228ac85e1a9bab055e5f6d24a347b9d83b3211e77e418a5d9ac1d62e9918

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6

SRPM
ovmf-20180508-3.gitee3198e672e2.el7_6.1.src.rpm	SHA-256: 86204a9e16bb8afbf2fc26e9a78dd95340f83fee70c92e5863a040a596052cb3
x86_64
OVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: f110228ac85e1a9bab055e5f6d24a347b9d83b3211e77e418a5d9ac1d62e9918

Red Hat Enterprise Linux Server - AUS 7.6

SRPM
ovmf-20180508-3.gitee3198e672e2.el7_6.1.src.rpm	SHA-256: 86204a9e16bb8afbf2fc26e9a78dd95340f83fee70c92e5863a040a596052cb3
x86_64
OVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: f110228ac85e1a9bab055e5f6d24a347b9d83b3211e77e418a5d9ac1d62e9918

Red Hat Enterprise Linux Server - TUS 7.6

SRPM
ovmf-20180508-3.gitee3198e672e2.el7_6.1.src.rpm	SHA-256: 86204a9e16bb8afbf2fc26e9a78dd95340f83fee70c92e5863a040a596052cb3
x86_64
OVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: f110228ac85e1a9bab055e5f6d24a347b9d83b3211e77e418a5d9ac1d62e9918

Red Hat Enterprise Linux for ARM 64 7

SRPM
ovmf-20180508-3.gitee3198e672e2.el7_6.1.src.rpm	SHA-256: 86204a9e16bb8afbf2fc26e9a78dd95340f83fee70c92e5863a040a596052cb3
aarch64
AAVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: 3ee0922b4bb61428780d77f8a327f3fb450a698c6f698037ebe60df23928cfa8
AAVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: 3ee0922b4bb61428780d77f8a327f3fb450a698c6f698037ebe60df23928cfa8
AAVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: 3ee0922b4bb61428780d77f8a327f3fb450a698c6f698037ebe60df23928cfa8
AAVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: 3ee0922b4bb61428780d77f8a327f3fb450a698c6f698037ebe60df23928cfa8

Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6

SRPM
ovmf-20180508-3.gitee3198e672e2.el7_6.1.src.rpm	SHA-256: 86204a9e16bb8afbf2fc26e9a78dd95340f83fee70c92e5863a040a596052cb3
x86_64
OVMF-20180508-3.gitee3198e672e2.el7_6.1.noarch.rpm	SHA-256: f110228ac85e1a9bab055e5f6d24a347b9d83b3211e77e418a5d9ac1d62e9918