Overview

File _patchinfo of Package patchinfo.28618

<patchinfo incident="28618">
  <issue tracker="bnc" id="1210382">The bootx64.efi in EFI boot partition is not updated after shim be upgraded.</issue>
  <issue tracker="cve" id="2022-28737"></issue>
  <packager>joeyli</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for shim</summary>
  <description>This update for shim fixes the following issues:

- CVE-2022-28737 was missing as reference previously.

- Upgrade shim-install for bsc#1210382

  After closing Leap-gap project since Leap 15.3, openSUSE Leap direct
  uses shim from SLE. So the ca_string is 'SUSE Linux Enterprise Secure Boot
  CA1', not 'openSUSE Secure Boot CA1'. It causes that the update_boot=no,
  so all files in /boot/efi/EFI/boot are not updated.

  Logic was added that is using ID field in os-release for
  checking Leap distro and set ca_string to 'SUSE Linux Enterprise Secure
  Boot CA1'. Then /boot/efi/EFI/boot/* can also be updated.
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places