Security update for ovmf
This update for ovmf fixes the following issues:
- CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler (bsc#1175476).
- Use openSUSE CA for the opensuse flavor (bsc#1175674)
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Gary Ching-Pang Lin (gary_lin)
Fixed bugs
bnc#1175674
[Build 20200823] openQA test fails in bootloader_uefi - The old ovmf uses the old openSUSE signkey as the db key, so it refused the images signed by the new signkey
bnc#1175476
VUL-1: CVE-2019-14562: ovmf: DxeImageVerificationHandler integer overflow leads to endless loop
