RHSA-2024:2264HighCVSS 8.8

Red Hat Security Advisory: edk2 security update

Published
April 30, 2024
Last Modified
June 26, 2026

🔗 CVE IDs covered (8)

📋 Description

CVE-2022-36763 — EDK2: heap buffer overflow in Tcg2MeasureGptTable() CVE-2022-36764 — EDK2: heap buffer overflow in Tcg2MeasurePeImage() CVE-2023-3446 — openssl: Excessive time spent checking DH keys and parameters CVE-2023-45229 — edk2: Integer underflow when processing IA_NA/IA_TA options in a DHCPv6 Advertise message CVE-2023-45231 — edk2: Out of Bounds read when handling a ND Redirect message with truncated options CVE-2023-45232 — edk2: Infinite loop when parsing unknown options in the Destination Options header CVE-2023-45233 — edk2: Infinite loop when parsing a PadN option in the Destination Options header CVE-2023-45235 — edk2: Buffer overflow when handling Server ID option from a DHCPv6 proxy Advertise message

🔗 References (14)