openSUSE-SU-2019:1352-1

Опубликовано: 08 мая 2019

Источник: suse-cvrf

Описание

Security update for ovmf

This update for ovmf fixes the following issues:

Security issue fixed:

CVE-2019-0161: Fixed a stack overflow in UsbBusDxe and UsbBusPei, which could potentially be triggered by a local unauthenticated user (bsc#1131361).

This update was imported from the SUSE:SLE-15:Update update project.

ovmf-2017+git1510945757.b2662641d5-lp150.4.19.1

ovmf-tools-2017+git1510945757.b2662641d5-lp150.4.19.1

qemu-ovmf-ia32-2017+git1510945757.b2662641d5-lp150.4.19.1

qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-lp150.4.19.1

qemu-ovmf-x86_64-debug-2017+git1510945757.b2662641d5-lp150.4.19.1

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access.

openSUSE Leap 15.0:ovmf-2017+git1510945757.b2662641d5-lp150.4.19.1

openSUSE Leap 15.0:ovmf-tools-2017+git1510945757.b2662641d5-lp150.4.19.1

openSUSE Leap 15.0:qemu-ovmf-ia32-2017+git1510945757.b2662641d5-lp150.4.19.1

openSUSE Leap 15.0:qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-lp150.4.19.1