poky/ovmf at fb0a4eb7a8aa94deffd46c4611175dee4ffe2d07 - poky

mirror of https://git.yoctoproject.org/poky synced 2026-06-21 13:54:22 +02:00

Files

Hongxu Jia c18ef2583d ovmf: fix CVE-2024-38798

According to [1],

  EDK2 contains a vulnerability in BIOS where an attacker may cause “Exposure of
  Sensitive Information to an Unauthorized Actor” by local access. Successful
  exploitation of this vulnerability will lead to possible information disclosure
  or escalation of privilege and impact Confidentiality.

Backport a patch [2] from upstream to fix CVE-2024-38798

[1] https://nvd.nist.gov/vuln/detail/CVE-2024-38798
[2] 0cad130cb4

(From OE-Core rev: ed444adf325d3a985ed8f9ae0a009ecbaf67c3fd)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>

2026-05-12 21:31:33 +01:00

ovmf

ovmf: fix CVE-2024-38798

2026-05-12 21:31:33 +01:00

ovmf_git.bb

ovmf: fix CVE-2024-38798

2026-05-12 21:31:33 +01:00

ovmf-shell-image.bb

meta: add missing summaries for image recipes

2023-07-30 09:16:52 +01:00