rpm package
opensuse/shim&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/shim&distro=openSUSE%20Tumbleweed
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-14584 | — | < 15.4-4.2 | 15.4-4.2 | Jun 3, 2021 | Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2014-3677 | — | < 0.9-1.1 | 0.9-1.1 | Oct 22, 2014 | Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption. | ||
| CVE-2014-3676 | — | < 0.9-1.1 | 0.9-1.1 | Oct 22, 2014 | Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option." | ||
| CVE-2014-3675 | — | < 0.9-1.1 | 0.9-1.1 | Oct 22, 2014 | Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted DHCPv6 packet. |
- CVE-2019-14584Jun 3, 2021affected < 15.4-4.2fixed 15.4-4.2
Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2014-3677Oct 22, 2014affected < 0.9-1.1fixed 0.9-1.1
Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption.
- CVE-2014-3676Oct 22, 2014affected < 0.9-1.1fixed 0.9-1.1
Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option."
- CVE-2014-3675Oct 22, 2014affected < 0.9-1.1fixed 0.9-1.1
Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted DHCPv6 packet.