CVE-2026-20753

Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements a...

SUSE CVE-2026-45851

In the Linux kernel, the following vulnerability has been resolved: efi: Fix reservation of unaccepted memory table The reserveunaccepted function incorrectly calculates the size of the memblock reservation for the unaccepted memory table. It aligns the size of the table, but fails to account for...

CVE-2026-43171

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entire memory region The current logic at cperprintfwerr doesn't check if the error record length is big enough to handle offset. On a bad firmware, if the ofset is above the actual record, length -= offs...

Linux Distros Unpatched Vulnerability : CVE-2026-43171

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - EFI/CPER: don't dump the entire memory region The current logic at cperprintfwerr doesn't check if the error record length is big enough to handle offset. On a...

Astra Linux – Vulnerability in edk2

The BootPerformanceTable pointer is retrieved from an NVRAM variable within PEI. It is recommended that the PcdFirmwarePerformanceDataTableS3Support be set to FALSE...

EUVD-2025-93472

Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414377)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414377 advisory. An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free. Tenable has...

Unity Linux 20.1070a Security Update: microcode_ctl (UTSA-2025-984689)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984689 advisory. Improper input validation in UEFI firmware for some IntelR Processors may allow a privileged user to potentially enable information disclosure via local access...

PT-2025-37657

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.2.0-rc3-rt1 Description: A flaw exists in the Linux kernel related to the EFI runtime services. Specifically, the efi rt lock spinlock could lead to preemption issues when called from within EFI runtime...

PT-2025-37981

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where the communication buffer allocated by setup mm hdr was not contiguous, despite being expected to be by tee shm register kernel buf. This could le...

SUSE CVE-2025-38315

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: Check dsbr size from EFI variable Since the size of struct btinteldsbr is already known, we can just start there instead of querying the EFI variable size. If the final result doesn't match what we expect also...

SUSE CVE-2025-21872

In the Linux kernel, the following vulnerability has been resolved: efi: Don't map the entire mokvar table to determine its size Currently, when validating the mokvar table, we remap the entire table on each iteration of the loop, adding space as we discover new entries. If the table grows over a...

microcode_ctl: Improper initialization in UEFI firmware OutOfBandXML module

Improper initialization in UEFI firmware OutOfBandXML module in some IntelR Processors may allow a privileged user to potentially enable information disclosure via local access...

CVE-2024-35803 x86/efistub: Call mixed mode boot services on the firmware's stack

In the Linux kernel, the following vulnerability has been resolved: x86/efistub: Call mixed mode boot services on the firmware's stack Normally, the EFI stub calls into the EFI boot services using the stack that was live when the stub was entered. According to the UEFI spec, this stack needs to b...

PT-2024-20216 · Intel · Intel Server D50Fcp Family

Name of the Vulnerable Software and Affected Versions: IntelR Server D50FCP Family products affected versions not specified Description: The issue is related to improper buffer restrictions in the PlatformPfrDxe driver in UEFI firmware, which may allow a privileged user to enable escalation of...

DEBIAN-CVE-2021-47134

In the Linux kernel, the following vulnerability has been resolved: efi/fdt: fix panic when no valid fdt found setuparch would invoke efiinit-efigetfdtparams. If no valid fdt found then initialbootparams will be null. So we should stop further fdt processing here. I encountered this issue on risc...

Amazon Linux 2023 : grub2-common, grub2-efi-aa64, grub2-efi-aa64-cdboot (ALAS2023-2023-409)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-409 advisory. An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata...

SUSE-RU-2023:2566-1 Security update for SUSE Manager Server 4.3

This update fixes the following issues: branch-network-formula: - Update to version 0.1.1680167239.23f2fec Remove unnecessary import of 'salt.ext.six' cobbler: - Fix cobbler buildiso so that the artifact can be booted by EFI firmware. bsc1206060 - Switch packaging from patch based to Git tree bas...

Intel Server Board M10JNP2SB缓冲区错误漏洞

Intel Server Board M10JNP2SB is a processor from Intel Corporation USA. A security vulnerability exists in the IntelR Server Board M10JNP2SB EFI BIOS prior to version 7215, BMC 8100.01.08, which allows an unauthenticated user to potentially enable denial of service via adjacent access...

kernel security and bug fix update

4.18.0-193.28.12.OL8 - Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x6...