Download
| Alert*
oval:org.secpod.oval:def:67955
The gnome-software packages contain an application that makes it easy to add, remove, and update software in the GNOME desktop. The appstream-data package provides the distribution specific AppStream metadata required for the GNOME and KDE software centers. The fwupd packages provide a service that ... oval:org.secpod.oval:def:118343 This library allows reading and writing gzip-compressed JSON catalog files, which can be used to store GPG, PKCS-7 and SHA-256 checksums for each file. This provides equivalent functionality to the catalog files supported in Microsoft Windows. oval:org.secpod.oval:def:118385 fwupd is a daemon to allow session software to update device firmware. oval:org.secpod.oval:def:504726 The gnome-software packages contain an application that makes it easy to add, remove, and update software in the GNOME desktop. The appstream-data package provides the distribution specific AppStream metadata required for the GNOME and KDE software centers. The fwupd packages provide a service that ... oval:org.secpod.oval:def:64131 fwupd: Firmware update daemon fwupd could be made to install an unsigned firmware. oval:org.secpod.oval:def:89050287 This update for fwupd fixes the following issues: - CVE-2020-10759: Fixed a potential PGP signature bypass, which could have led to installation of unsigned firmware oval:org.secpod.oval:def:2003810 A PGP signature bypass flaw was found in fwupd , which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service is either not implemented or enabled in versions of fwupd shipped wi ... oval:org.secpod.oval:def:2500207 The gnome-software packages contain an application that makes it easy to add, remove, and update software in the GNOME desktop. oval:org.secpod.oval:def:89049529 This update for fwupd fixes the following issues: - Update to version 1.2.14: - Add SBAT section to EFI images - CVE-2020-10759: Validate that gpgme_op_verify_result returned at least one signature oval:org.secpod.oval:def:1504464 appstream-data [8-20200724] - Regenerate the RHEL metadata to include the EPEL apps too - Resolves: #1844488 [8-20200630] - Regenerate the RHEL metadata - Resolves: #1844488 fwupd [1.4.2-4.0.1] - Build with the updated Oracle certificate - Use oraclesecureboot301 as certdir [Orabug: 29881368] - Use ... oval:org.secpod.oval:def:705513 fwupd: Firmware update daemon fwupd could be made to install an unsigned firmware. |