edk2-20220126gitbb1bba3d77-13.el8_10.2

エラータID: AXSA:2024-8666:08

Release date: 
Thursday, August 15, 2024 - 16:09
Subject: 
edk2-20220126gitbb1bba3d77-13.el8_10.2
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.

Security Fix(es):

* edk2: Predictable TCP Initial Sequence Numbers (CVE-2023-45236)
* edk2: Use of a Weak PseudoRandom Number Generator (CVE-2023-45237)
* edk2: Temporary DoS vulnerability (CVE-2024-1298)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-45236
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2024-1298
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.

Solution: 

Update packages.

CVEs: 
CVE-2023-45236
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2024-1298
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
Additional Info: 

N/A

Download: 

SRPMS
  1. edk2-20220126gitbb1bba3d77-13.el8_10.2.src.rpm
    MD5: bd7139afeb70f6529f4ec86225742ae8
    SHA-256: 4ab44ff51ef6da37c305dbdfe845875f73f7d43e8ffe1d35e52ad235dc482406
    Size: 14.92 MB

Asianux Server 8 for x86_64
  1. edk2-ovmf-20220126gitbb1bba3d77-13.el8_10.2.noarch.rpm
    MD5: 3b0731c3bfc981029736706da4f0a261
    SHA-256: 5f23ffece210ce335dae6eef8efa340fe4abba9ec347300bc43788899952c6b4
    Size: 3.64 MB