SUSE-SU-2023:2084-1 -- SLES shimID: oval:org.secpod.oval:def:89048816 | Date: (C)2023-06-02 (M)2024-01-23 |
Class: PATCH | Family: unix |
This update for shim fixes the following issues: * CVE-2022-28737 was missing as reference previously. * Upgrade shim-install for bsc#1210382 After closing Leap-gap project since Leap 15.3, openSUSE Leap direct uses shim from SLE. So the ca_string is "SUSE Linux Enterprise Secure Boot CA1", not "openSUSE Secure Boot CA1". It causes that the update_boot=no, so all files in /boot/efi/EFI/boot are not updated. Logic was added that is using ID field in os-release for checking Leap distro and set ca_string to "SUSE Linux Enterprise Secure Boot CA1". Then /boot/efi/EFI/boot/* can also be updated.
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Server 15 SP4 |
SUSE Linux Enterprise Server 15 SP3 |