File _patchinfo of Package patchinfo.3096
<patchinfo>
<issue id="813079" tracker="bnc">shim in ESP wasn't updated after package updating</issue>
<issue id="877003" tracker="bnc">RSOD comes when it boot from virtual media after invalid UEFI PXE</issue>
<issue id="889765" tracker="bnc">GRUB shows broken letters at boot</issue>
<issue id="808106" tracker="bnc">shim didn't count signatures correctly</issue>
<issue id="798043" tracker="bnc">shim doesn't get the name of the second stage loader right</issue>
<issue id="807760" tracker="bnc">Correct the PXE second stage boot loader name in shim</issue>
<issue id="875385" tracker="bnc">Failed to boot the encrypted root partition in a UEFI machine</issue>
<issue id="863205" tracker="bnc">Deleting a hash from MOK/MOKX list could corrupt the list</issue>
<issue id="889332" tracker="bnc">VUL-0: EMBARGOED: CVE-2014-3676: shim: buffer overflow and OOB access in shim trusted code path</issue>
<issue id="873857" tracker="bnc">/var/run is deprecated</issue>
<issue id="841426" tracker="bnc">Upgrading to Beta1 from previous milestone made my laptop unbootable (UEFI support broken)</issue>
<issue id="866690" tracker="bnc">grub2 efi failed to show the boot menu</issue>
<issue id="872503" tracker="bnc">Optical Disk Drive(UEFI) boot fail under UEFI secure boot enabled on HP firmware.</issue>
<issue id="813448" tracker="bnc">shim: find a way to avoid packaging a binary</issue>
<issue id="867974" tracker="bnc">shim with Microsoft certificate is refused to boot</issue>
<category>security</category>
<rating>moderate</rating>
<packager>jsegitz</packager>
<message>This update requires you to confirm a dialog on the first reboot after installing the update! This is only
necessary once.</message>
<description>shim was updated to fix several security issues.
- OOB read access when parsing DHCPv6 packets (remote DoS) (CVE-2014-3675).
- Heap overflow when parsing IPv6 addresses provided by tftp:// DHCPv6 boot option (RCE) (CVE-2014-3676).
- Memory corruption when processing user provided MOK lists (CVE-2014-3677).
More information is available at https://bugzilla.novell.com/show_bug.cgi?id=889332
To enable this update gnu-efi was updated to 3.0u and pesign to version 0.109
</description>
<summary>Update for gnu-efi, pesign, shim</summary>
</patchinfo>