NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_name": "ovmf", "binary_version": "0~20180205.c0d9813c-2ubuntu0.3+esm2" }, { "binary_name": "qemu-efi", "binary_version": "0~20180205.c0d9813c-2ubuntu0.3+esm2" }, { "binary_name": "qemu-efi-aarch64", "binary_version": "0~20180205.c0d9813c-2ubuntu0.3+esm2" }, { "binary_name": "qemu-efi-arm", "binary_version": "0~20180205.c0d9813c-2ubuntu0.3+esm2" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "ovmf", "binary_version": "0~20191122.bd85bf54-2ubuntu3.3" }, { "binary_name": "qemu-efi", "binary_version": "0~20191122.bd85bf54-2ubuntu3.3" }, { "binary_name": "qemu-efi-aarch64", "binary_version": "0~20191122.bd85bf54-2ubuntu3.3" }, { "binary_name": "qemu-efi-arm", "binary_version": "0~20191122.bd85bf54-2ubuntu3.3" } ] }