openSUSE-SU-2019:1139-1

Опубликовано: 04 апр. 2019

Источник: suse-cvrf

Описание

Security update for ovmf

This update for ovmf fixes the following issue:

Security issue fixed:

CVE-2018-12181: Fixed a stack buffer overflow in the HII database when a corrupted Bitmap was used (bsc#1128503).

This update was imported from the SUSE:SLE-12-SP3:Update update project.

Список пакетов

openSUSE Leap 42.3

ovmf-2017+git1492060560.b6d11d7c46-19.1

ovmf-tools-2017+git1492060560.b6d11d7c46-19.1

qemu-ovmf-ia32-2017+git1492060560.b6d11d7c46-19.1

qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-19.1

qemu-ovmf-x86_64-debug-2017+git1492060560.b6d11d7c46-19.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-04/msg00030.html
E-Mail link for openSUSE-SU-2019:1139-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access.

Затронутые продукты

openSUSE Leap 42.3:ovmf-2017+git1492060560.b6d11d7c46-19.1

openSUSE Leap 42.3:ovmf-tools-2017+git1492060560.b6d11d7c46-19.1

openSUSE Leap 42.3:qemu-ovmf-ia32-2017+git1492060560.b6d11d7c46-19.1

openSUSE Leap 42.3:qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-19.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-12181.html
CVE-2018-12181
https://bugzilla.suse.com/1128503
SUSE Bug 1128503

openSUSE-SU-2019:1139-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2018-12181

Описание

Затронутые продукты

Ссылки