edk2-20220126gitbb1bba3d77-6.el8_9.6.ML.1
エラータID: AXSA:2024-7572:03
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
* edk2: Buffer overflow in the DHCPv6 client via a long Server ID option (CVE-2023-45230)
* edk2: Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message (CVE-2023-45234)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-45230
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
CVE-2023-45234
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Update packages.
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
N/A
SRPMS
- edk2-20220126gitbb1bba3d77-6.el8_9.6.ML.1.src.rpm
MD5: 96953bad5751463dab080ecd59e9fca2
SHA-256: e6cc2fc19b9ff7211c07abf328101eb717eab74cd9d5c580cf211fadafba578e
Size: 14.53 MB
Asianux Server 8 for x86_64
- edk2-ovmf-20220126gitbb1bba3d77-6.el8_9.6.ML.1.noarch.rpm
MD5: 45825029557ac3b26be0c7535ac8c733
SHA-256: f8ae6d6ff43efee45cb256bd2da4ccfd0d309a98d1363b65d7652a03864fa4fe
Size: 3.62 MB