edk2 Info

edk2 was added to epel7 repo on 2014-07-24
Page updated: 2023-11-21 11:36
Repo Status - Overall Status

Source NVR: edk2-20140724svn2670-4.el7 (2014-07-24)

Binary Packages

edk2-tools edk2-tools-20140724svn2670-4.el7
edk2-tools-doc edk2-tools-doc-20140724svn2670-4.el7
edk2-tools-python edk2-tools-python-20140724svn2670-4.el7

Bugs

1641435 NEW CVE-2018-3613 edk2: Logic error in MdeModulePkg in EDK II firmware allows for privilege escalation by authenticated users [epel-all]
1641444 NEW CVE-2017-5731 edk2: Privilege escalation via processing of malformed files in TianoCompress.c [epel-all]
1641448 NEW CVE-2017-5732 edk2: Privilege escalation via processing of malformed files in BaseUefiDecompressLib.c [epel-all]
1641452 NEW CVE-2017-5733 edk2: Privilege escalation via heap-based buffer overflow in MakeTable() function [epel-all]
1641462 NEW CVE-2017-5734 edk2: Privilege escalation via stack-based buffer overflow in MakeTable() function [epel-all]
1641468 NEW CVE-2017-5735 edk2: Privilege escalation via heap-based buffer overflow in Decode() function [epel-all]
1683331 NEW CVE-2018-12178 edk2: improper DNS packet size check [epel-all]
1683374 NEW CVE-2018-12180 edk2: Buffer Overflow in BlockIo service for RAM disk [epel-all]
1683406 NEW edk2: stack buffer overflow in file/path name string check in UdfDxe/File.c [epel-all]
1683412 NEW edk2: stack buffer overflow in FindAnchorVolumeDescriptorPointer in PartitionDxe/Udf.c [epel-all]
1683415 NEW edk2: heap buffer overflow in ReadFile in UdfDxe/FileSystemOperations.c [epel-all]
1683424 NEW edk2: heap buffer overflow in LengthofComponentIdentifier in UdfDxe/FileSystemOperations.c [epel-all]
1683430 NEW edk2: heap buffer overflow in NumberOfPartitions in UdfDxe/FileSystemOperations.c [epel-all]
1683655 NEW CVE-2018-3630 edk2: ovmf: Logic error in FV parsing in MdeModulePkg\Core\Pei\FwVol\FwVol.c [epel-all]
1686785 NEW CVE-2018-12181 edk2: Stack buffer overflow with corrupted BMP [epel-all]
1691646 NEW CVE-2019-0160 edk2: buffer overflows in PartitionDxe and UdfDxe with long file names and invalid UDF media [epel-all]
1694086 NEW CVE-2018-12179 CVE-2018-12182 CVE-2018-12183 CVE-2019-0161 edk2: various flaws [epel-all]
1758521 NEW CVE-2019-14553 edk2: invalid server certificate accepted in HTTPS-over-IPv6 boot [epel-all]
1801260 NEW CVE-2019-14563 edk2: numeric truncation in MdeModulePkg/PiDxeS3BootScriptLib [epel-all]
1801268 NEW CVE-2019-14559 edk2: memory leak in ArpOnFrameRcvdDpc [epel-all]
1801270 NEW CVE-2019-14575 edk2: DxeImageVerificationHandler() fails open in case of dbx signature check [epel-all]
1833342 NEW CVE-2019-14586 edk2: potential use-after-free due to the original configuration runtime memory is freed but it is still exposed to the OS runtime [epel-all]
1833349 NEW CVE-2019-14558 edk2: potentially leaking of secret information due to uncleared memory [epel-all]
1833354 NEW CVE-2019-14587 edk2: double-unmap issue in SdMmcCreateTrb function in MdeModulePkg/Bus/Pci/SdMmcPciHcDxe/SdMmcPciHci.c [epel-all]
1858039 NEW CVE-2019-14560 edk2: Function GetEfiGlobalVariable2() return value not checked in DxeImageVerificationHandler() [epel-all]
1869247 NEW CVE-2019-14562 edk2: DxeImageVerificationHandler integer overflow leads to endless loop [epel-all]
1889878 NEW CVE-2019-14584 edk2: NULL pointer dereference in AuthenticodeVerify() [epel-all]
1899493 NEW CVE-2021-28210 edk2: unlimited FV recursion, round 2 [epel-all]
1899496 NEW CVE-2021-28211 edk2: possible heap corruption with LzmaUefiDecompressGetInfo [epel-all]
1969442 NEW CVE-2021-38575 edk2: remote buffer overflow in IScsiHexToBin function in NetworkPkg/IScsiDxe [epel-all]
1971725 NEW CVE-2021-28213 edk2: encrypted private key in the IpSecDxe.efi present potential security risks [epel-7]
2007435 NEW CVE-2019-11098 edk2: Insufficient input validation in MdeModulePkg [epel-7]
2096378 NEW CVE-2021-38578 edk2: integer underflow in SmmEntryPoint function leads to potential SMM privilege escalation [epel-7]

Install Failures