rpm package
suse/ovmf&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS
pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28211 | Med | 6.7 | < 2017+git1510945757.b2662641d5-5.43.1 | 2017+git1510945757.b2662641d5-5.43.1 | Jun 11, 2021 | A heap overflow in LzmaUefiDecompressGetInfo function in EDK II. | |
| CVE-2021-28210 | Hig | 7.8 | < 2017+git1510945757.b2662641d5-5.43.1 | 2017+git1510945757.b2662641d5-5.43.1 | Jun 11, 2021 | An unlimited recursion in DxeCore in EDK II. | |
| CVE-2019-14562 | Med | 5.5 | < 2017+git1510945757.b2662641d5-5.35.1 | 2017+git1510945757.b2662641d5-5.35.1 | Nov 23, 2020 | Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access. |
- affected < 2017+git1510945757.b2662641d5-5.43.1fixed 2017+git1510945757.b2662641d5-5.43.1
A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.
- affected < 2017+git1510945757.b2662641d5-5.43.1fixed 2017+git1510945757.b2662641d5-5.43.1
An unlimited recursion in DxeCore in EDK II.
- affected < 2017+git1510945757.b2662641d5-5.35.1fixed 2017+git1510945757.b2662641d5-5.35.1
Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.