CVE-2025-69421 affecting package hvloader for versions less than 1.0.1-17

CVE-2025-69421 affecting package hvloader for versions less than 1.0.1-17. A patched version of the package is available...

AZL-76161 CVE-2026-22796 affecting package hvloader for versions less than 1.0.1-18

Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing malformed PKCS7 data. Impact summary: An application...

CVE-2023-45229 affecting package hvloader for versions less than 1.0.1-9

CVE-2023-45229 affecting package hvloader for versions less than 1.0.1-9. A patched version of the package is available...

CVE-2023-3446 affecting package hvloader for versions less than 1.0.1-6

CVE-2023-3446 affecting package hvloader for versions less than 1.0.1-6. An upgraded version of the package is available that resolves this issue...

AZL-49713 CVE-2024-38796 affecting package hvloader for versions less than 1.0.1-13

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage. An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

CVE-2023-0286 affecting package hvloader for versions less than 1.0.1-4

CVE-2023-0286 affecting package hvloader for versions less than 1.0.1-4. An upgraded version of the package is available that resolves this issue...

AZL-39451 CVE-2023-45234 affecting package hvloader for versions less than 1.0.1-9

EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or...