SUSE-SU-2021:2117-1 -- SLES ovmf, qemu-ovmf-x86_64| ID: oval:org.secpod.oval:def:89045093 | Date: (C)2021-07-06 (M)2022-09-22 |
| Class: PATCH | Family: unix |
This update for ovmf fixes the following issues: - Fixed a possible buffer overflow in IScsiDxe - CVE-2021-28211: ovmf: edk2: possible heap corruption with LzmaUefiDecompressGetInfo - CVE-2021-28210: ovmf: unlimited FV recursion, round 2 - CVE-2019-14584: ovmf,shim: NULL pointer dereference in AuthenticodeVerify
| Platform: |
| SUSE Linux Enterprise Server 12 SP2 |
| Product: |
| ovmf |
| qemu-ovmf-x86_64 |
