Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2024-11185

Опубликовано: 17 дек. 2024
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2024-11185: edk2:20220126gitbb1bba3d77 security update (MODERATE)

[20220126gitbb1bba3d77-13.el8.4]

  • edk2-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch [RHEL-60830]
  • Resolves: RHEL-60830 (CVE-2024-38796 edk2: Integer overflows in PeCoffLoaderRelocateImage [rhel-8.10.z])

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

edk2-aarch64

20220126gitbb1bba3d77-13.el8_10.4

Oracle Linux x86_64

edk2-ovmf

20220126gitbb1bba3d77-13.el8_10.4

Связанные CVE

CVE-2024-38796

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2024-38796

CVSS3: 5.9
ubuntu
9 месяцев назад

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.

redhat логотип

CVE-2024-38796

CVSS3: 5.9
redhat
9 месяцев назад

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.

nvd логотип

CVE-2024-38796

CVSS3: 5.9
nvd
9 месяцев назад

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.

msrc логотип

CVE-2024-38796

CVSS3: 5.9
msrc
30 дней назад

Описание отсутствует

debian логотип

CVE-2024-38796

CVSS3: 5.9
debian
9 месяцев назад

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An A ...