Lucene search
RedHatRHSA-2024:3497HistoryMay 30, 2024 - 12:07 p.m.
(RHSA-2024:3497) Important: edk2 security update
2024-05-3012:07:00
access.redhat.com
2
edk2
uefi
virtual machines
buffer overflow
dhcpv6
security update
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual
Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
-
edk2: Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message (CVE-2023-45234)
-
edk2: Buffer overflow in the DHCPv6 client via a long Server ID option (CVE-2023-45230)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | noarch | edk2-ovmf | < 20220126gitbb1bba3d77-2.el8_6.4 | edk2-ovmf-20220126gitbb1bba3d77-2.el8_6.4.noarch.rpm |
| RedHat | 8 | noarch | edk2-aarch64 | < 20220126gitbb1bba3d77-2.el8_6.4 | edk2-aarch64-20220126gitbb1bba3d77-2.el8_6.4.noarch.rpm |
Related
nessus
nessus
CentOS 8 : edk2 (CESA-2024:1063)
2024-03-04 00:00:00
RHEL 9 : edk2 (RHSA-2024:1076)
2024-03-05 00:00:00
Rocky Linux 8 : edk2 (RLSA-2024:1063)
2024-03-12 00:00:00
rocky
rocky
edk2 security update
2024-03-12 15:41:47
redhat
redhat
(RHSA-2024:1063) Important: edk2 security update
2024-03-04 01:48:38
(RHSA-2024:1075) Important: edk2 security update
2024-03-05 00:13:33
(RHSA-2024:1077) Important: edk2 security update
2024-03-05 00:13:46
osv
osv
Important: edk2 security update
2024-03-12 15:41:47
Important: edk2 security update
2024-03-05 00:00:00
Important: edk2 security update
2024-03-04 00:00:00
oraclelinux
oraclelinux
edk2 security update
2024-03-08 00:00:00
edk2 security update
2024-03-05 00:00:00
edk2 security update
2024-06-04 00:00:00
almalinux
almalinux
Important: edk2 security update
2024-03-04 00:00:00
Important: edk2 security update
2024-03-05 00:00:00
alpinelinux
alpinelinux
CVE-2023-45234
2024-01-16 16:15:12
CVE-2023-45230
2024-01-16 16:15:11
debiancve
debiancve
CVE-2023-45234
2024-01-16 16:15:12
CVE-2023-45230
2024-01-16 16:15:11
ubuntucve
ubuntucve
CVE-2023-45230
2024-01-16 00:00:00
CVE-2023-45234
2024-01-16 00:00:00
nvd
nvd
CVE-2023-45234
2024-01-16 16:15:12
CVE-2023-45230
2024-01-16 16:15:11
redhatcve
redhatcve
CVE-2023-45234
2024-01-17 03:33:51
CVE-2023-45230
2024-01-17 03:09:23
cbl_mariner
cbl_mariner
cvelist
cvelist
CVE-2023-45234 Buffer Overflow in EDK II Network Package
2024-01-16 16:14:28
CVE-2023-45230 Buffer Overflow in EDK II Network Package
2024-01-16 16:08:01
prion
prion
Buffer overflow
2024-01-16 16:15:00
Buffer overflow
2024-01-16 16:15:00
cve
cve
CVE-2023-45234
2024-01-16 16:15:12
CVE-2023-45230
2024-01-16 16:15:11
amazon
amazon
Important: edk2
2024-02-29 10:03:00
openvas
openvas
Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2024-1722)
2024-05-30 00:00:00
Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2024-1733)
2024-05-30 00:00:00
Ubuntu: Security Advisory (USN-6638-1)
2024-02-15 00:00:00
ubuntu
ubuntu
EDK II vulnerabilities
2024-02-15 00:00:00
thn
thn
fedora
fedora
[SECURITY] Fedora 39 Update: edk2-20240214-2.fc39
2024-03-13 01:25:14
cert
cert
Vulnerabilities in EDK2 NetworkPkg IP stack implementation.
2024-01-16 00:00:00
debian
debian
[SECURITY] [DSA 5624-1] edk2 security update
2024-02-14 20:00:57