Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
almalinuxAlmaLinuxALSA-2020:4805
HistoryNov 03, 2020 - 12:37 p.m.

Moderate: edk2 security, bug fix, and enhancement update

2020-11-0312:37:37
errata.almalinux.org
14

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.

Security Fix(es):

  • edk2: memory leak in ArpOnFrameRcvdDpc (CVE-2019-14559)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
almalinux8noarchedk2-ovmf< 20200602gitca407c7246bf-3.el8edk2-ovmf-20200602gitca407c7246bf-3.el8.noarch.rpm

Related

oraclelinux 1
nessus 20
cve 1
debiancve 1
suse 2
prion 1
redhatcve 1
ubuntucve 1
openvas 17
redhat 2
altlinux 2
amazon 1
fedora 1
ubuntu 1
osv 1
debian 1
mageia 1
oraclelinux
oraclelinux
edk2 security, bug fix, and enhancement update
2020-11-10 00:00:00
nessus
nessus
SUSE SLES15 Security Update : ovmf (SUSE-SU-2020:1125-1)
2020-04-29 00:00:00
NewStart CGSL MAIN 6.02 : edk2 Vulnerability (NS-SA-2021-0058)
2021-03-10 00:00:00
CentOS 8 : edk2 (CESA-2020:4805)
2021-02-01 00:00:00
cve
cve
CVE-2019-14559
2020-11-23 16:15:00
debiancve
debiancve
CVE-2019-14559
2020-11-23 16:15:00
suse
suse
Security update for ovmf (moderate)
2020-05-11 00:00:00
Security update for ovmf (moderate)
2020-03-08 00:00:00
prion
prion
Design/Logic Flaw
2020-11-23 16:15:00
redhatcve
redhatcve
CVE-2019-14559
2020-02-10 14:44:27
ubuntucve
ubuntucve
CVE-2019-14559
2019-12-31 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:1125-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:1065-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for ovmf (openSUSE-SU-2020:0622-1)
2020-05-12 00:00:00
redhat
redhat
(RHSA-2020:4805) Moderate: edk2 security, bug fix, and enhancement update
2020-11-03 12:37:37
(RHSA-2021:0799) Moderate: OpenShift Virtualization 2.6.0 security and bug fix update
2021-03-10 08:47:39
altlinux
altlinux
Security fix for the ALT Linux 9 package edk2-tools version 20200229-alt1
2020-07-22 00:00:00
Security fix for the ALT Linux 10 package edk2 version 20200229-alt1
2020-05-16 00:00:00
amazon
amazon
Medium: edk2
2020-10-22 17:30:00
fedora
fedora
[SECURITY] Fedora 33 Update: edk2-20200801stable-1.fc33
2020-10-01 00:17:30
ubuntu
ubuntu
EDK II vulnerabilities
2020-04-30 00:00:00
osv
osv
edk2 - security update
2021-04-29 00:00:00
debian
debian
[SECURITY] [DLA 2645-1] edk2 security update
2021-04-29 20:03:01
mageia
mageia
Updated edk2 packages fix multiples security vulnerabilities
2021-01-17 19:07:01

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON
Related for ALSA-2020:4805
oraclelinux1nessus20cve1debiancve1suse2prion1redhatcve1ubuntucve1openvas17redhat2altlinux2amazon1fedora1ubuntu1osv1debian1mageia1