Описание
Important: edk2 security update
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
- edk2: remote buffer overflow in IScsiHexToBin function in NetworkPkg/IScsiDxe (BZ#1956284)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Затронутые продукты
Rocky Linux 8
Связанные CVE
Исправления
- Red Hat - 1956284
Связанные уязвимости
CVSS3: 8.1
ubuntu
около 4 лет назад
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
CVSS3: 8.1
redhat
больше 4 лет назад
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
CVSS3: 8.1
nvd
около 4 лет назад
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
CVSS3: 8.1
debian
около 4 лет назад
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
CVSS3: 8.1
github
около 4 лет назад
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.