EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability. https://github.com/tianocore/edk2/security/advisories/GHSA-chfw-xj8f-6m53
Created edk2 tracking bugs for this issue: Affects: fedora-all [bug 2284244]
Created edk2 tracking bugs for this issue: Affects: epel-all [bug 2284246] Created efifs tracking bugs for this issue: Affects: epel-all [bug 2284247] Affects: fedora-all [bug 2284248]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:4747 https://access.redhat.com/errata/RHSA-2024:4747
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:5297 https://access.redhat.com/errata/RHSA-2024:5297
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2024:5623 https://access.redhat.com/errata/RHSA-2024:5623