Vulnerability Database
Blog
FAQ
Docs
RHSA-2019:2125
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2019:2125
Import Source
https://security.access.redhat.com/data/osv/RHSA-2019:2125.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2019:2125
Related
CVE-2017-5731
CVE-2017-5732
CVE-2017-5733
CVE-2017-5734
CVE-2017-5735
CVE-2018-12181
CVE-2018-3613
CVE-2018-5407
CVE-2019-0160
CVE-2019-0161
Published
2024-09-16T02:06:51Z
Modified
2024-10-27T18:10:22Z
Severity
6.7 (Medium)
CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: ovmf security and enhancement update
Details
References
https://access.redhat.com/errata/RHSA-2019:2125
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
https://bugzilla.redhat.com/show_bug.cgi?id=1641433
https://bugzilla.redhat.com/show_bug.cgi?id=1641442
https://bugzilla.redhat.com/show_bug.cgi?id=1641446
https://bugzilla.redhat.com/show_bug.cgi?id=1641450
https://bugzilla.redhat.com/show_bug.cgi?id=1641458
https://bugzilla.redhat.com/show_bug.cgi?id=1641465
https://bugzilla.redhat.com/show_bug.cgi?id=1645695
https://bugzilla.redhat.com/show_bug.cgi?id=1686783
https://bugzilla.redhat.com/show_bug.cgi?id=1691640
https://bugzilla.redhat.com/show_bug.cgi?id=1694065
https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2125.json
https://access.redhat.com/security/cve/CVE-2017-5731
https://www.cve.org/CVERecord?id=CVE-2017-5731
https://nvd.nist.gov/vuln/detail/CVE-2017-5731
https://edk2-docs.gitbooks.io/security-advisory/content/edk-ii-tianocompress-bounds-checking-issues.html
https://access.redhat.com/security/cve/CVE-2017-5732
https://www.cve.org/CVERecord?id=CVE-2017-5732
https://nvd.nist.gov/vuln/detail/CVE-2017-5732
https://access.redhat.com/security/cve/CVE-2017-5733
https://www.cve.org/CVERecord?id=CVE-2017-5733
https://nvd.nist.gov/vuln/detail/CVE-2017-5733
https://access.redhat.com/security/cve/CVE-2017-5734
https://www.cve.org/CVERecord?id=CVE-2017-5734
https://nvd.nist.gov/vuln/detail/CVE-2017-5734
https://access.redhat.com/security/cve/CVE-2017-5735
https://www.cve.org/CVERecord?id=CVE-2017-5735
https://nvd.nist.gov/vuln/detail/CVE-2017-5735
https://access.redhat.com/security/cve/CVE-2018-3613
https://www.cve.org/CVERecord?id=CVE-2018-3613
https://nvd.nist.gov/vuln/detail/CVE-2018-3613
https://edk2-docs.gitbooks.io/security-advisory/content/edk-ii-authenticated-variable-bypass.html
https://access.redhat.com/security/cve/CVE-2018-5407
https://www.cve.org/CVERecord?id=CVE-2018-5407
https://nvd.nist.gov/vuln/detail/CVE-2018-5407
https://github.com/bbbrumley/portsmash
https://www.openssl.org/news/secadv/20181112.txt
https://access.redhat.com/security/cve/CVE-2018-12181
https://www.cve.org/CVERecord?id=CVE-2018-12181
https://nvd.nist.gov/vuln/detail/CVE-2018-12181
https://access.redhat.com/security/cve/CVE-2019-0160
https://www.cve.org/CVERecord?id=CVE-2019-0160
https://nvd.nist.gov/vuln/detail/CVE-2019-0160
https://access.redhat.com/security/cve/CVE-2019-0161
https://www.cve.org/CVERecord?id=CVE-2019-0161
https://nvd.nist.gov/vuln/detail/CVE-2019-0161
https://edk2-docs.gitbooks.io/security-advisory/content/xhci-stack-local-stack-overflow.html
Affected packages
Red Hat:enterprise_linux:7::server
/
OVMF
Package
Name
OVMF
Purl
pkg:rpm/redhat/OVMF
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:20180508-6.gitee3198e672e2.el7
Red Hat:enterprise_linux:7::server
/
ovmf
Package
Name
ovmf
Purl
pkg:rpm/redhat/ovmf
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:20180508-6.gitee3198e672e2.el7
RHSA-2019:2125 - OSV