RHSA-2019:2125
- Source
- https://access.redhat.com/errata/RHSA-2019:2125
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2019:2125.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2019:2125
- Related
- Published
- 2024-09-16T02:06:51Z
- Modified
- 2024-11-22T12:37:51Z
- Severity
-
- 6.7 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Red Hat Security Advisory: ovmf security and enhancement update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2019:2125
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
- https://bugzilla.redhat.com/show_bug.cgi?id=1641433
- https://bugzilla.redhat.com/show_bug.cgi?id=1641442
- https://bugzilla.redhat.com/show_bug.cgi?id=1641446
- https://bugzilla.redhat.com/show_bug.cgi?id=1641450
- https://bugzilla.redhat.com/show_bug.cgi?id=1641458
- https://bugzilla.redhat.com/show_bug.cgi?id=1641465
- https://bugzilla.redhat.com/show_bug.cgi?id=1645695
- https://bugzilla.redhat.com/show_bug.cgi?id=1686783
- https://bugzilla.redhat.com/show_bug.cgi?id=1691640
- https://bugzilla.redhat.com/show_bug.cgi?id=1694065
- https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2125.json
- https://access.redhat.com/security/cve/CVE-2017-5731
- https://www.cve.org/CVERecord?id=CVE-2017-5731
- https://nvd.nist.gov/vuln/detail/CVE-2017-5731
- https://edk2-docs.gitbooks.io/security-advisory/content/edk-ii-tianocompress-bounds-checking-issues.html
- https://access.redhat.com/security/cve/CVE-2017-5732
- https://www.cve.org/CVERecord?id=CVE-2017-5732
- https://nvd.nist.gov/vuln/detail/CVE-2017-5732
- https://access.redhat.com/security/cve/CVE-2017-5733
- https://www.cve.org/CVERecord?id=CVE-2017-5733
- https://nvd.nist.gov/vuln/detail/CVE-2017-5733
- https://access.redhat.com/security/cve/CVE-2017-5734
- https://www.cve.org/CVERecord?id=CVE-2017-5734
- https://nvd.nist.gov/vuln/detail/CVE-2017-5734
- https://access.redhat.com/security/cve/CVE-2017-5735
- https://www.cve.org/CVERecord?id=CVE-2017-5735
- https://nvd.nist.gov/vuln/detail/CVE-2017-5735
- https://access.redhat.com/security/cve/CVE-2018-3613
- https://www.cve.org/CVERecord?id=CVE-2018-3613
- https://nvd.nist.gov/vuln/detail/CVE-2018-3613
- https://edk2-docs.gitbooks.io/security-advisory/content/edk-ii-authenticated-variable-bypass.html
- https://access.redhat.com/security/cve/CVE-2018-5407
- https://www.cve.org/CVERecord?id=CVE-2018-5407
- https://nvd.nist.gov/vuln/detail/CVE-2018-5407
- https://github.com/bbbrumley/portsmash
- https://www.openssl.org/news/secadv/20181112.txt
- https://access.redhat.com/security/cve/CVE-2018-12181
- https://www.cve.org/CVERecord?id=CVE-2018-12181
- https://nvd.nist.gov/vuln/detail/CVE-2018-12181
- https://access.redhat.com/security/cve/CVE-2019-0160
- https://www.cve.org/CVERecord?id=CVE-2019-0160
- https://nvd.nist.gov/vuln/detail/CVE-2019-0160
- https://access.redhat.com/security/cve/CVE-2019-0161
- https://www.cve.org/CVERecord?id=CVE-2019-0161
- https://nvd.nist.gov/vuln/detail/CVE-2019-0161
- https://edk2-docs.gitbooks.io/security-advisory/content/xhci-stack-local-stack-overflow.html
Affected packages
Red Hat:enterprise_linux:7::server / OVMF
Package
- Name
- OVMF
- Purl
- pkg:rpm/redhat/OVMF