what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

CVE-2021-38578

Status Candidate

Overview

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

Related Files

Ubuntu Security Notice USN-7060-1: Posted Oct 10, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7060-1 - It was discovered that EDK II did not check the buffer length in XHCI, which could lead to a stack overflow. A local attacker could potentially use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Laszlo Ersek discovered that EDK II incorrectly handled recursion. A remote attacker could possibly use this issue to cause EDK II to consume resources, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.; tags | advisory, remote, denial of service, overflow, local; systems | linux, ubuntu; advisories | CVE-2019-0161, CVE-2021-28210, CVE-2021-28211, CVE-2021-38575, CVE-2021-38578, CVE-2022-1292; SHA-256 | 4da85379bce0bd996f69858bb941555e77ae2c4f4a4eeb00ea9f355b115bb3ed; Download | Favorite | View

Red Hat Security Advisory 2023-2165-01: Posted May 9, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-2165-01 - EDK is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Issues addressed include double free, privilege escalation, and use-after-free vulnerabilities.; tags | advisory, vulnerability; systems | linux, redhat; advisories | CVE-2021-38578, CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0286; SHA-256 | 066a0b8b887b807496ca5e4cab3ba9a903e29113186a10b4fa2c79670fcb6c9c; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 223 files
Ubuntu 57 files
LiquidWorm 23 files
Debian 19 files
indoushka 15 files
Apple 9 files
Google Security Research 5 files
Gentoo 5 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Tags

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec