2 matches found
Privilege Escalation
edk2 is vulnerable to privilege escalation. The attack is due to buffer overflows in PartitionDxe and UdfDxe with long file names and invalid UDF media...
SUSE SLES15 Security Update : ovmf (SUSE-SU-2019:0804-1)
This update for ovmf fixes the following issues : Security issues fixed : CVE-2019-0160: Fixed multiple buffer overflows in UDF-related codes in MdeModulePkg\Universal\Disk\PartitionDxe\Udf.c and MdeModulePkg\Universal\Disk\UdfDxe bsc1130267. CVE-2018-12181: Fixed a stack-based buffer overflow in...