Oval Definition:oval:org.opensuse.security:def:85341
Revision Date:2019-03-11Version:1
Title:Security update for ovmf (Important)
Description:

This update for ovmf fixes the following issues:

Security issues fixed:

- CVE-2018-12180: Fixed a buffer overflow in BlockIo service, which could lead to memory read/write overrun (bsc#1127820). - CVE-2018-12178: Fixed an improper DNS check upon receiving a new DNS packet (bsc#1127821). - CVE-2018-3630: Fixed a logic error in FV parsing which could allow a local attacker to bypass the chain of trust checks (bsc#1127822).
Family:unixClass:patch
Status:Reference(s):1127820
1127821
1127822
CVE-2018-12178
CVE-2018-12180
CVE-2018-3630
SUSE-SU-2019:0579-1
Platform(s):SUSE Linux Enterprise Server 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • ovmf-2017+git1492060560.b6d11d7c46-4.20.1 is installed
  • OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.20.1 is installed
  • OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.20.1 is installed
  • OR qemu-uefi-aarch64-2017+git1492060560.b6d11d7c46-4.20.1 is installed
    • BACK