openEuler update for edk2



Risk Medium
Patch available YES
Number of vulnerabilities 3
CVE-ID CVE-2023-45229
CVE-2023-45231
CVE-2023-45234
CWE-ID CWE-125
CWE-119
Exploitation vector Local network
Public exploit N/A
Vulnerable software
 openEuler
Operating systems & Components / Operating system

edk2-aarch64
Operating systems & Components / Operating system package or component

edk2-help
Operating systems & Components / Operating system package or component

python3-edk2-devel
Operating systems & Components / Operating system package or component

edk2-ovmf
Operating systems & Components / Operating system package or component

edk2-devel
Operating systems & Components / Operating system package or component

edk2-debugsource
Operating systems & Components / Operating system package or component

edk2-debuginfo
Operating systems & Components / Operating system package or component

edk2
Operating systems & Components / Operating system package or component

Vendor openEuler

Security Bulletin

This security bulletin contains information about 3 vulnerabilities.

1) Out-of-bounds read

EUVDB-ID: #VU85519

Risk: Low

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-45229

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. A remote attacker on the local network can trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 22.03 LTS

edk2-aarch64: before 202002-20

edk2-help: before 202002-20

python3-edk2-devel: before 202002-20

edk2-ovmf: before 202002-20

edk2-devel: before 202002-20

edk2-debugsource: before 202002-20

edk2-debuginfo: before 202002-20

edk2: before 202002-20

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1280


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Out-of-bounds read

EUVDB-ID: #VU85521

Risk: Low

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-45231

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition when processing Neighbor Discovery Redirect message. A remote attacker on the local network can trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 22.03 LTS

edk2-aarch64: before 202002-20

edk2-help: before 202002-20

python3-edk2-devel: before 202002-20

edk2-ovmf: before 202002-20

edk2-devel: before 202002-20

edk2-debugsource: before 202002-20

edk2-debuginfo: before 202002-20

edk2: before 202002-20

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1280


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Buffer overflow

EUVDB-ID: #VU85525

Risk: Medium

CVSSv4.0: 6.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-45234

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing DNS Servers option from a DHCPv6 Advertise message. A remote attacker on the local network can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 22.03 LTS

edk2-aarch64: before 202002-20

edk2-help: before 202002-20

python3-edk2-devel: before 202002-20

edk2-ovmf: before 202002-20

edk2-devel: before 202002-20

edk2-debugsource: before 202002-20

edk2-debuginfo: before 202002-20

edk2: before 202002-20

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1280


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###