EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability. https://github.com/tianocore/edk2/security/advisories/GHSA-xvv8-66cq-prwr
Created edk2 tracking bugs for this issue: Affects: epel-all [bug 2257591] Affects: fedora-all [bug 2257588]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2264 https://access.redhat.com/errata/RHSA-2024:2264
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:3017 https://access.redhat.com/errata/RHSA-2024:3017