Vulnerability Database
Blog
FAQ
Docs
CVE-2021-38578
Source
https://nvd.nist.gov/vuln/detail/CVE-2021-38578
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-38578.json
Related
ALSA-2023:2165
Published
2022-03-03T22:15:08Z
Modified
2024-05-14T10:34:47.196796Z
Summary
[none]
Details
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
References
https://bugzilla.tianocore.org/show_bug.cgi?id=3387
https://www.insyde.com/security-pledge/SA-2023024
Affected packages
Git
/
github.com/tianocore/edk2
Affected ranges
Type
GIT
Repo
https://github.com/tianocore/edk2
Events
Introduced
0
The exact introduced commit is unknown
Last affected
b24306f15daa2ff8510b06702114724b33895d3c
Affected versions
Other
edk2-stable201808
edk2-stable201811
edk2-stable201903
edk2-stable201905
edk2-stable201908
edk2-stable201911
edk2-stable202002
edk2-stable202005
edk2-stable202008
edk2-stable202011
edk2-stable202102
edk2-stable202105
edk2-stable202108
edk2-stable202108-rc0
edk2-stable202108-rc1
edk2-stable202111
edk2-stable202111-rc1
edk2-stable202202
edk2-stable202202-rc1
CVE-2021-38578 - OSV