-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 08 Nov 2025 11:06:17 -0700 Source: edk2 Architecture: source Version: 2025.02-8+deb13u1 Distribution: trixie Urgency: medium Maintainer: Debian QEMU Team Changed-By: dann frazier Changes: edk2 (2025.02-8+deb13u1) trixie; urgency=medium . * Cherry-pick openssl fix for timing side-channel in ECDSA signature computation, CVE-2024-13176. - d/p/0001-Fix-timing-side-channel-in-ECDSA-signature-computati.patch * Fix out-of-bounds memory access in NetworkPkg/IScsiDxe, CVE-2024-38805. - d/p/0001-NetworkPkg-IScsiDxe-Fix-for-out-of-bound-memory-acce.patch * Safe handling of IDT register on SMM entry, CVE-2025-3770. - d/p/0001-UefiCpuPkg-PiSmmCpuDxeSmm-Safe-handling-of-IDT-regis.patch Checksums-Sha1: 5b05e3950c28a553b834e36adc04798e08120fc0 2656 edk2_2025.02-8+deb13u1.dsc 775cb978f0b86754e9a0407438835391d7648d60 53652 edk2_2025.02-8+deb13u1.debian.tar.xz c0ec2b6834612de4f2dd5305e8daec3bff14ab19 10408 edk2_2025.02-8+deb13u1_source.buildinfo Checksums-Sha256: 9e2115e7d75a3930b082216ef3378cca040fde049c86f4547e8ed6da1515ffee 2656 edk2_2025.02-8+deb13u1.dsc e2a7f6fc58640818416a028d6d5e9dfc255697a7cdc60c14566c236df6bd9b08 53652 edk2_2025.02-8+deb13u1.debian.tar.xz 89c1cfe2a6be1db6441d77c59c068c60a941c044087695efaf2b1a8c6ac7ab53 10408 edk2_2025.02-8+deb13u1_source.buildinfo Files: ee9de3d45dd7f5c67f34ce3cf6a2a13a 2656 misc optional edk2_2025.02-8+deb13u1.dsc 54e1509cef31e2e8074c7feee6b60605 53652 misc optional edk2_2025.02-8+deb13u1.debian.tar.xz cd6929b8b51b96889a5c1692da2a9603 10408 misc optional edk2_2025.02-8+deb13u1_source.buildinfo -----BEGIN PGP SIGNATURE----- wr0EARYKAG8FgmlakEIJEFRbhkD0YjpYRxQAAAAAAB4AIHNhbHRAbm90YXRpb25z LnNlcXVvaWEtcGdwLm9yZwtBHvmm6hHM6sM3MCuBpLiPoIO5P81EjCcaHWOaXQ/c FiEEKBpcS4ojw8R0IfYuVFuGQPRiOlgAAAliAP9yxRoUCvMyQvfh6afjMj1L6mWt CitU6NZsCfEgR38JgAD/Zu2IDabl2PJlt7uu1kmT10QgdsmljgkXp8aHvGo98wY= =wh0z -----END PGP SIGNATURE-----