CVE-2023-43630 (edge_virtualization_engine)

PCR14 is not in the list of PCRs that seal/unseal the “vault� key, but
due to the change that was implemented in commit
“7638364bc0acf8b5c481b5ce5fea11ad44ad7fd4�, fixing this issue alone would not solve the
problem of the config partition not being measured correctly.

Also, the “vault� key is sealed/unsealed with SHA1 PCRs instead of
SHA256.
This issue was somewhat mitigated due to all of the PCR extend functions
updating both the values of SHA256 and SHA1 for a given PCR ID.

However, …

change cve issue key list problem sha1 sha256