rpm package
opensuse/ovmf&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/ovmf&distro=openSUSE%20Leap%2015.2
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28211 | — | < 201911-lp152.6.11.1 | 201911-lp152.6.11.1 | Jun 11, 2021 | A heap overflow in LzmaUefiDecompressGetInfo function in EDK II. | ||
| CVE-2021-28210 | — | < 201911-lp152.6.11.1 | 201911-lp152.6.11.1 | Jun 11, 2021 | An unlimited recursion in DxeCore in EDK II. | ||
| CVE-2019-14584 | — | < 201911-lp152.6.8.1 | 201911-lp152.6.8.1 | Jun 3, 2021 | Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2019-14562 | — | < 201911-lp152.6.5.1 | 201911-lp152.6.5.1 | Nov 23, 2020 | Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access. |
- CVE-2021-28211Jun 11, 2021affected < 201911-lp152.6.11.1fixed 201911-lp152.6.11.1
A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.
- CVE-2021-28210Jun 11, 2021affected < 201911-lp152.6.11.1fixed 201911-lp152.6.11.1
An unlimited recursion in DxeCore in EDK II.
- CVE-2019-14584Jun 3, 2021affected < 201911-lp152.6.8.1fixed 201911-lp152.6.8.1
Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2019-14562Nov 23, 2020affected < 201911-lp152.6.5.1fixed 201911-lp152.6.5.1
Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.