<div class="container">
<h1>Recommended update for pcr-oracle</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-RU-2025:20800-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2025-09-25T10:30:14Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1219807">bsc#1219807</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230316">bsc#1230316</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1241957">bsc#1241957</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Micro 6.1</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that has three fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for pcr-oracle fixes the following issues:</p>
<p>Update to 0.5.7</p>
<ul>
<li>Support ppc64 events</li>
<li>Fix the string comparison for the alternative event
(bsc#1241957)</li>
</ul>
<p>Update to 0.5.6</p>
<ul>
<li>rsa: adopt OpenSSL 3.0 API to generate RSA key</li>
<li>Drop the code for openSSL < 3.0.0</li>
<li>Look for signing authority in alternative database
(bsc#1241957)</li>
</ul>
<p>Update to 0.5.5</p>
<ul>
<li>Merge of pending patches into the project</li>
<li>
<p>No new feature since last release</p>
</li>
<li>
<p>Fix the prediction of SbatLevelRT when Secure Boot is disabled
(bsc#1230316)</p>
</li>
<li>
<p>Make PCR4 a hard requirement for SbatLevelRT prediction (bsc#1230316)</p>
</li>
<li>
<p>Predict SbatLevelRT for the next boot (bsc#1230316)</p>
</li>
<li>
<p>Detect the crypto device with the 'cryptouuid' prefix</p>
</li>
<li>
<p>Support ECC SRK</p>
</li>
<li>
<p>Include the measurements of the cmdline and the linux and initrd grub commands</p>
</li>
<li>
<p>Measure boot entries in GRUB BLS</p>
</li>
<li>
<p>Measure the systemd-boot loader.conf file</p>
</li>
<li>
<p>Fix the measurement of EFI binaries</p>
</li>
</ul>
<p>Update to 0.5.4</p>
<ul>
<li>Improve systemd-boot support</li>
<li>Add --boot-entry for systemd-boot</li>
<li>Manpage fixes</li>
<li>Fix PCR index in JSON file</li>
<li>Fix GrubPcrSnapshot parsing</li>
</ul>
<p>Update to 0.5.3</p>
<ul>
<li>Improve documentation</li>
<li>Detect key format store via extension</li>
<li>Replace --key-format and --policy-format options with a single
--target-platform option</li>
<li>
<p>The json file can contain multiple predictions</p>
</li>
<li>
<p>Fix the PCR index number in the JSON file</p>
</li>
<li>
<p>Support the export in PEM format of the public key</p>
</li>
</ul>
<p>Update to 0.5.2</p>
<ul>
<li>Support EV_EVENT_TAG events from the kernel (PCR9 for the cmdline
and the kernel)</li>
<li>Fix cmdline measurements</li>
</ul>
<p>Update to 0.5.1</p>
<ul>
<li>Measure the kernel as an EFI binary (PCR4)</li>
</ul>
<p>Update to 0.5.0</p>
<ul>
<li>Support systemd-cryptenroll JSON files</li>
<li>Generate RSA keys in more scenarios</li>
<li>Select RSA key size</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Micro 6.1
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-6.1-284=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Micro 6.1 (aarch64 x86_64)
<ul>
<li>pcr-oracle-debuginfo-0.5.7-slfo.1.1_2.1</li>
<li>pcr-oracle-0.5.7-slfo.1.1_2.1</li>
<li>pcr-oracle-debugsource-0.5.7-slfo.1.1_2.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1219807">https://bugzilla.suse.com/show_bug.cgi?id=1219807</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230316">https://bugzilla.suse.com/show_bug.cgi?id=1230316</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1241957">https://bugzilla.suse.com/show_bug.cgi?id=1241957</a>
</li>
</ul>
</div>