21 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-14562
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access. CVE-2019-14562...
RHEL 8 : edk2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - edk2: DxeImageVerificationHandler integer overflow leads to endless loop CVE-2019-14562 - openssl: Possib...
SUSE: Security Advisory (SUSE-SU-2020:2691-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:2713-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:3126-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2021-1736)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-4684-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4684-1: EDK II vulnerabilities
Laszlo Ersek discovered that EDK II incorrectly validated certain signed images. An attacker could possibly use this issue with a specially crafted image to cause EDK II to hang, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS...
SUSE SLES12 Security Update : ovmf (SUSE-SU-2020:3126-1)
This update for ovmf fixes the following issues : CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler bsc1175476. CVE-2019-14559: Fixed a memory leak in ArpOnFrameRcvdDpc bsc1163927. Note that Tenable Network Security has extracted the preceding description block directly from the SU...
SUSE SLES15 Security Update : ovmf (SUSE-SU-2020:2713-1)
This update for ovmf fixes the following issues : CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler bsc1175476. Use openSUSE CA for the opensuse flavor bsc1175674 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
UBUNTU-CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
CVE-2019-14562
CVE-2019-14562 affects the edk2 firmware (DxeImageVerificationHandler) with an integer overflow that may cause a denial of service via local access. Affected components are firmware/EDK II implementations. The vulnerability is demonstrated across multiple advisories: Debian LTS/DLA-2645-1 fixes e...
openSUSE Security Update : ovmf (openSUSE-2020-1535)
This update for ovmf fixes the following issues : - CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler bsc1175476. - Use openSUSE CA for the opensuse flavor bsc1175674 This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descripti...
openSUSE: Security Advisory for ovmf (openSUSE-SU-2020:1535-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for ovmf (moderate)
openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2020:1535-1 Rating: moderate References: 1175476 1175674 Cross-References: CVE-2019-14562 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available. Description:...
OPENSUSE-SU-2020:1535-1 Security update for ovmf
This update for ovmf fixes the following issues: - CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler bsc1175476. - Use openSUSE CA for the opensuse flavor bsc1175674 This update was imported from the SUSE:SLE-15:Update update project...
SUSE-SU-2020:2691-1 Security update for ovmf
This update for ovmf fixes the following issues: - CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler bsc1175476. - Support more SCSI drivers PvScsi, MptScsi and LsiScsi. bsc1119454 - Enable LsiScsi explicitly since it's disabled by default...
CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...