Lucene search
SuseOPENSUSE-SU-2019:0348-1HistoryMar 19, 2019 - 12:00 a.m.
Security update for ovmf (important)
2019-03-1900:00:00
lists.opensuse.org
151
0.014 Low
EPSS
Percentile
86.7%
An update that fixes three vulnerabilities is now available.
Description:
This update for ovmf fixes the following issues:
Security issues fixed:
- CVE-2018-12180: Fixed a buffer overflow in BlockIo service, which could
lead to memory read/write overrun (bsc#1127820). - CVE-2018-12178: Fixed an improper DNS check upon receiving a new DNS
packet (bsc#1127821). - CVE-2018-3630: Fixed a logic error in FV parsing which could allow a
local attacker to bypass the chain of trust checks (bsc#1127822).
This update was imported from the SUSE:SLE-12-SP3:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 42.3:
zypper in -t patch openSUSE-2019-348=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.3 | i586 | < - openSUSE Leap 42.3 (i586 x86_64): | - openSUSE Leap 42.3 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 42.3 | x86_64 | < - openSUSE Leap 42.3 (i586 x86_64): | - openSUSE Leap 42.3 (i586 x86_64):.x86_64.rpm | |
| openSUSE Leap | 42.3 | x86_64 | < - openSUSE Leap 42.3 (x86_64): | - openSUSE Leap 42.3 (x86_64):.x86_64.rpm | |
| openSUSE Leap | 42.3 | noarch | < - openSUSE Leap 42.3 (noarch): | - openSUSE Leap 42.3 (noarch):.noarch.rpm |
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:0581-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for ovmf (openSUSE-SU-2019:0348-1)
2019-03-21 00:00:00
openSUSE: Security Advisory for ovmf (openSUSE-SU-2019:1083-1)
2019-04-03 00:00:00
nessus
nessus
openSUSE Security Update : ovmf (openSUSE-2019-1083)
2019-04-01 00:00:00
SUSE SLES12 Security Update : ovmf (SUSE-SU-2019:0579-1)
2019-03-12 00:00:00
SUSE SLES12 Security Update : ovmf (SUSE-SU-2019:0581-1)
2019-03-12 00:00:00
suse
suse
Security update for ovmf (important)
2019-03-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package edk2 version 20190308-alt1
2019-04-02 00:00:00
redhatcve
redhatcve
cve
cve
nvd
nvd
ubuntucve
ubuntucve
CVE-2018-12180
2019-03-27 00:00:00
CVE-2018-12178
2019-03-27 00:00:00
prion
prion
Buffer overflow
2019-03-27 20:29:00
Buffer overflow
2019-03-27 20:29:00
redhat
redhat
(RHSA-2019:0809) Important: ovmf security update
2019-04-23 12:35:58
(RHSA-2019:1116) Important: redhat-virtualization-host security update
2019-05-08 13:34:20
(RHSA-2019:0968) Important: edk2 security update
2019-05-07 03:38:15
debiancve
debiancve
CVE-2018-12178
2019-03-27 20:29:03
CVE-2018-12180
2019-03-27 20:29:03
cvelist
cvelist
oraclelinux
oraclelinux
ovmf security update
2019-04-23 00:00:00
edk2 security update
2019-07-30 00:00:00
edk2 security update
2019-09-13 00:00:00
centos
centos
OVMF security update
2019-04-30 12:01:18
veracode
veracode
Buffer Overflow
2019-05-16 03:42:13
fedora
fedora
[SECURITY] Fedora 29 Update: edk2-20190308stable-1.fc29
2019-04-03 03:31:40
[SECURITY] Fedora 30 Update: edk2-20190308stable-1.fc30
2019-03-31 00:05:59
amazon
amazon
Important: edk2
2019-08-23 03:26:00
ubuntu
ubuntu
EDK II vulnerabilities
2020-04-30 00:00:00