32 matches found
EUVD-2019-5723
Malware in sbrugna...
edk2 security and bug fix update
20220126gitbb1bba3d77-6 - edk2-UefiCpuPkg-MpInitLib-fix-apic-mode-for-cpu-hotplug.patch bz2150267 - Resolves: bz2150267 ovmf must consider max cpu count not boot cpu count for apic mode rhel-8 20220126gitbb1bba3d77-5 - edk2-SecurityPkg-DxeImageVerificationLib-Check-result-of-.patch bz1861743 -...
SUSE CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
SUSE CVE-2019-14575
Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...
SUSE: Security Advisory (SUSE-SU-2020:0495-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.1 : edk2 (EulerOS-SA-2021-1736)
According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via...
EulerOS Virtualization 2.9.0 : edk2 (EulerOS-SA-2021-1764)
According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via...
EulerOS Virtualization 2.9.0 : edk2 (EulerOS-SA-2021-1668)
According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - EFI Development Kit II AARCH64 UEFI FirmwareSecurity Fixes:AuthenticodeVerify calls OpenSSLs d2iPKCS7 API to parse asn encoded signe...
EDK II Elevation of Privilege Vulnerability
EDK II is a modern, feature-rich cross-platform firmware development environment for UEFI and the UEFI Platform Initialization PI specification. An elevation of privilege vulnerability exists in EDK II that stems from a logic issue in EDK II's DxeImageVerificationHandler, which can be exploited b...
CVE-2019-14575
Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-14575
Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...
Privilege escalation
Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
Integer overflow
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
UBUNTU-CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...
CVE-2019-14575
Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-14575
Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-14575
CVE-2019-14575 affects the EDK II firmware, describing a logic issue in DxeImageVerificationHandler() that may let an authenticated local user escalate privileges. The vulnerability is documented across multiple advisories (edk2 firmware references and related Nessus/Debian/DLA entries). The avai...
CVE-2019-14562
Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access...