Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: edk2 (UTSA-2026-017403)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017403 advisory. NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. Tenable has extracted the preceding description block directly from the Unity Linux security advisory...

EUVD-2021-25017

Malware in sbrugna...

EulerOS Virtualization 3.0.2.0 : edk2 (EulerOS-SA-2023-1689)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An unlimited recursion in DxeCore in EDK II. CVE-2021-28210 - NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

RHEL 8 : edk2 (RHSA-2021:3066)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3066 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU a...

Oracle Linux 8 : edk2 (ELSA-2021-3066)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-3066 advisory. 20200602gitca407c7246bf-4.el84.2 - edk2-NetworkPkg-IScsiDxe-wrap-IScsiCHAP-source-files-to-8.patch bz1956676 -...

EulerOS Virtualization 2.10.1 : edk2 (EulerOS-SA-2022-1390)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of...

EulerOS Virtualization 2.10.0 : edk2 (EulerOS-SA-2022-1416)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of...

CVE-2021-38575

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

CVE-2021-38575

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

DEBIAN-CVE-2021-38575

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

Buffer overflow

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

CVE-2021-38575

CVE-2021-38575 affects NetworkPkg/IScsiDxe in EDK II. Remotely exploitable buffer overflows are indicated, with potential denial of service or arbitrary code execution. Public disclosures in Debian and Ubuntu advisories show fixes in edk2 (e.g., Debian 11 security update 2020.11-2+deb11u3) and in...

CVE-2021-38575

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

CVE-2021-38575

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

CVE-2021-38575

NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...

CVE-2021-38575

A flaw was found in edk2. Missing checks in the IScsiHexToBin function in NetworkPkg/IScsiDxe lead to a buffer overflow allowing a remote attacker, who can inject himself in the communication between edk2 and the iSCSI target, to write arbitrary data to any address in the edk2 firmware and...

Important: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: edk2: remote buffer overflow in IScsiHexToBin function in NetworkPkg/IScsiDxe BZ1956284 For more details about the security...

openSUSE: Security Advisory for ovmf (openSUSE-SU-2021:2118-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2021:2118-1 Security update for ovmf

This update for ovmf fixes the following issues: - Fixed a possible buffer overflow in IScsiDxe bsc1186151...

Security update for ovmf (important)

openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2021:2118-1 Rating: important References: 1186151 Affected Products: openSUSE Leap 15.3 An update that contains security fixes can now be installed. Description: This update for ovmf fixes the following issues: - Fixe...