Описание
Security update for ovmf
This update for ovmf fixes the following issues:
- CVE-2024-1298: potential division-by-zero crash in edk2 due to UINT32 overflow in S3 ResumeCount. (bsc#1225889)
- CVE-2023-45229: out-of-bounds read in edk2 when processing IA_NA/IA_TA options in DHCPv6 Advertise messages. (bsc#1218879)
- CVE-2023-45230: buffer overflow in the DHCPv6 client in edk2 via a long Server ID option. (bsc#1218880)
- CVE-2023-45231: out-of-bounds read in edk2 when handling a ND Redirect message with truncated options. (bsc#1218881)
- CVE-2023-45232: infinite loop in edk2 when parsing unknown options in the Destination Options header. (bsc#1218882)
- CVE-2023-45233: infinite loop in edk2 when parsing PadN options in the Destination Options header. (bsc#1218883)
- CVE-2023-45234: buffer overflow in edk2 when processing DNS Servers options in a DHCPv6 Advertise message. (bsc#1218884)
- CVE-2023-45235: buffer overflow in edk2 when handling the Server ID option in a DHCPv6 proxy Advertise message. (bsc#1218885)
- CVE-2023-45236: predictable TCP Initial Sequence Numbers in edk2 network packages. (bsc#1218886)
- CVE-2023-45237: use of a weak pseudorandom number generator in edk2. (bsc#1218887)
Список пакетов
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
SUSE Linux Enterprise Micro 5.3
SUSE Linux Enterprise Micro 5.4
SUSE Linux Enterprise Server 15 SP4-LTSS
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Manager Proxy 4.3
SUSE Manager Server 4.3
Ссылки
- Link for SUSE-SU-2025:0503-1
- E-Mail link for SUSE-SU-2025:0503-1
- SUSE Security Ratings
- SUSE Bug 1218879
- SUSE Bug 1218880
- SUSE Bug 1218881
- SUSE Bug 1218882
- SUSE Bug 1218883
- SUSE Bug 1218884
- SUSE Bug 1218885
- SUSE Bug 1218886
- SUSE Bug 1218887
- SUSE Bug 1225889
- SUSE CVE CVE-2023-45229 page
- SUSE CVE CVE-2023-45230 page
- SUSE CVE CVE-2023-45231 page
- SUSE CVE CVE-2023-45232 page
- SUSE CVE CVE-2023-45233 page
- SUSE CVE CVE-2023-45234 page
- SUSE CVE CVE-2023-45235 page
Описание
EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
Затронутые продукты
Ссылки
- CVE-2023-45229
- SUSE Bug 1218879
Описание
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Затронутые продукты
Ссылки
- CVE-2023-45230
- SUSE Bug 1218880
Описание
EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing Neighbor Discovery Redirect message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
Затронутые продукты
Ссылки
- CVE-2023-45231
- SUSE Bug 1218881
Описание
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.
Затронутые продукты
Ссылки
- CVE-2023-45232
- SUSE Bug 1218882
Описание
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.
Затронутые продукты
Ссылки
- CVE-2023-45233
- SUSE Bug 1218883
Описание
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Затронутые продукты
Ссылки
- CVE-2023-45234
- SUSE Bug 1218884
Описание
EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option from a DHCPv6 proxy Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Затронутые продукты
Ссылки
- CVE-2023-45235
- SUSE Bug 1218885
Описание
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
Затронутые продукты
Ссылки
- CVE-2023-45236
- SUSE Bug 1218886
Описание
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
Затронутые продукты
Ссылки
- CVE-2023-45237
- SUSE Bug 1218887
Описание
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
Затронутые продукты
Ссылки
- CVE-2024-1298
- SUSE Bug 1225889