openEuler 24.03 LTS SP1 update for edk2
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2023-5363 CVE-2024-13176 CVE-2024-4741 |
| CWE-ID | CWE-310 CWE-385 CWE-416 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
openEuler Operating systems & Components / Operating system python3-edk2-devel Operating systems & Components / Operating system package or component edk2-ovmf Operating systems & Components / Operating system package or component edk2-help Operating systems & Components / Operating system package or component edk2-aarch64 Operating systems & Components / Operating system package or component edk2-devel Operating systems & Components / Operating system package or component edk2-debugsource Operating systems & Components / Operating system package or component edk2-debuginfo Operating systems & Components / Operating system package or component edk2 Operating systems & Components / Operating system package or component |
| Vendor | openEuler |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Cryptographic issues
EUVDB-ID: #VU82349
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-5363
CWE-ID:
CWE-310 - Cryptographic Issues
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to an error when processing key and initialisation vector lengths in EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() and EVP_CipherInit_ex2() function. A remote attacker can gain access to potentially sensitive information.
The following ciphers and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB.
Install updates from vendor's repository.
Vulnerable software versionsopenEuler: 24.03 LTS SP1
python3-edk2-devel: before 202308-18
edk2-ovmf: before 202308-18
edk2-help: before 202308-18
edk2-aarch64: before 202308-18
edk2-devel: before 202308-18
edk2-debugsource: before 202308-18
edk2-debuginfo: before 202308-18
edk2: before 202308-18
CPE2.3- cpe:2.3:o:openeuler:openeuler:24.03:LTS SP1:*:*:*:*:*:*
- cpe:2.3:o:openeuler:python3-edk2-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-ovmf:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-help:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-aarch64:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-debugsource:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-debuginfo:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2:*:*:*:*:*:openeuler:*:*
http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1192
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Covert Timing Channel
EUVDB-ID: #VU103600
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-13176
CWE-ID:
CWE-385 - Covert Timing Channel
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to recover a private key.
The vulnerability exists due to a timing side-channel in ECDSA signature computations. A remote attacker can recover the private key and decrypt data.
Successful exploitation of the vulnerability requires that the attacker's process must either be located in the same physical computer or must have a very fast network connection with low latency.
MitigationInstall updates from vendor's repository.
Vulnerable software versionsopenEuler: 24.03 LTS SP1
python3-edk2-devel: before 202308-18
edk2-ovmf: before 202308-18
edk2-help: before 202308-18
edk2-aarch64: before 202308-18
edk2-devel: before 202308-18
edk2-debugsource: before 202308-18
edk2-debuginfo: before 202308-18
edk2: before 202308-18
CPE2.3- cpe:2.3:o:openeuler:openeuler:24.03:LTS SP1:*:*:*:*:*:*
- cpe:2.3:o:openeuler:python3-edk2-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-ovmf:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-help:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-aarch64:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-debugsource:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-debuginfo:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2:*:*:*:*:*:openeuler:*:*
http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1192
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Use-after-free
EUVDB-ID: #VU89861
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-4741
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a use-after-free error within the SSL_free_buffers() function. A remote attacker can trigger a use-after-free error and perform a denial of service (DoS) attack.
Note, the vulnerability affects only applications that call the vulnerable function.
Install updates from vendor's repository.
Vulnerable software versionsopenEuler: 24.03 LTS SP1
python3-edk2-devel: before 202308-18
edk2-ovmf: before 202308-18
edk2-help: before 202308-18
edk2-aarch64: before 202308-18
edk2-devel: before 202308-18
edk2-debugsource: before 202308-18
edk2-debuginfo: before 202308-18
edk2: before 202308-18
CPE2.3- cpe:2.3:o:openeuler:openeuler:24.03:LTS SP1:*:*:*:*:*:*
- cpe:2.3:o:openeuler:python3-edk2-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-ovmf:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-help:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-aarch64:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-debugsource:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2-debuginfo:*:*:*:*:*:openeuler:*:*
- cpe:2.3:o:openeuler:edk2:*:*:*:*:*:openeuler:*:*
http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1192
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
