Fedora Account System
Red Hat Associate
Red Hat Customer
Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access. References: https://edk2-docs.gitbook.io/security-advisory/bootguard-toctou-vulnerability https://bugzilla.tianocore.org/show_bug.cgi?id=1614
Created edk2 tracking bugs for this issue: Affects: epel-7 [bug 2007435]
Current patches: https://bugzilla.tianocore.org/attachment.cgi?id=316