3 matches found
The vulnerability of the handle_image() function in the UEFI loader shim allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the handleimage function in the UEFI loader shim is related to the issue of writing data beyond the buffer boundaries when processing EFI files, taking into account the SizeOfRawData field. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause...
DEBIAN-CVE-2022-28737
There's a possible overflow in handleimage when shim tries to load and execute crafted EFI executables; The handleimage function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code...
PT-2022-6874 · Shim +9 · Shim +9
Name of the Vulnerable Software and Affected Versions: shim affected versions not specified Description: The issue is related to the handle image function in the UEFI bootloader shim, which is vulnerable to a buffer overflow when processing EFI files that take into account the SizeOfRawData field...