Bug 808595

Summary: release notes: bug in double signing shim
Product: [openSUSE] openSUSE 12.3 Reporter: Ludwig Nussel <lnussel>
Component: Release NotesAssignee: Karl Eichwalder <ke>
Status: RESOLVED FIXED QA Contact: Stephan Kulow <coolo>
Severity: Normal    
Priority: P5 - None CC: glin, mlin
Version: Final   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Bug Depends on:    
Bug Blocks: 808614    

Description Ludwig Nussel 2013-03-11 08:47:07 UTC 
+++ This bug was initially created as a clone of Bug #808594 +++

See bug 808594 for description. If the openSUSE 12.3 medium does not boot on future secure boot enabled hardware the user has to temporarily disable secure boot, install openSUSE and apply all online updates to get an updated shim. After that secure boot can be turned on again.
Comment 1 Karl Eichwalder 2013-03-11 14:29:49 UTC 
Fix in SVN:

3.5. openSUSE 12.3 Medium May Not Boot on Future Secure Boot Enabled Hardware

This only affects machines in UEFI mode.

Our double signed shim on openSUSE 12.3 medium may be rejected by future
firmwares.

If the openSUSE 12.3 medium does not boot on future secure boot enabled
hardware, temporarily disable secure boot, install openSUSE and apply all
online updates to get an updated shim.

After installing all updates secure boot can be turned on again.
Comment 2 Swamp Workflow Management 2013-03-13 19:05:35 UTC 
openSUSE-RU-2013:0449-1: An update that has 7 recommended fixes can now be installed.

Category: recommended (important)
Bug References: 804773,808104,808108,808111,808116,808595,808614
CVE References: 
Sources used:
openSUSE 12.3 (src):    release-notes-openSUSE-12.3.6-1.6.1