RHSA-2019:3338-01 -- Redhat edk2ID: oval:org.secpod.oval:def:66459 | Date: (C)2020-10-30 (M)2024-01-29 |
Class: PATCH | Family: unix |
EDK is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix: * edk2: Stack buffer overflow with corrupted BMP * edk2: Buffer overflows in PartitionDxe and UdfDxe with long file names and invalid UDF media For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the CentOS 8.1 Release Notes linked from the References section.