rpm package
suse/ovmf&distro=SUSE Linux Enterprise Real Time 15 SP3
pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-38578 | — | < 202008-150300.10.20.1 | 202008-150300.10.20.1 | Mar 3, 2022 | Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. | ||
| CVE-2019-11098 | — | < 202008-150300.10.17.1 | 202008-150300.10.17.1 | Jul 14, 2021 | Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access. |
- CVE-2021-38578Mar 3, 2022affected < 202008-150300.10.20.1fixed 202008-150300.10.20.1
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
- CVE-2019-11098Jul 14, 2021affected < 202008-150300.10.17.1fixed 202008-150300.10.17.1
Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access.