%20--%3e%3csvg%20version='1.1'%20id='Layer_1'%20x='0px'%20y='0px'%20viewBox='0%200%20107.30001%20140.79999'%20xml:space='preserve'%20sodipodi:docname='mind_logo_positief.svg'%20width='107.30001'%20height='140.79999'%20xmlns:inkscape='http://www.inkscape.org/namespaces/inkscape'%20xmlns:sodipodi='http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd'%20xmlns='http://www.w3.org/2000/svg'%20xmlns:svg='http://www.w3.org/2000/svg'%3e%3cdefs%20id='defs29'%20/%3e%3csodipodi:namedview%20id='namedview29'%20pagecolor='%23505050'%20bordercolor='%23eeeeee'%20borderopacity='1'%20inkscape:showpageshadow='0'%20inkscape:pageopacity='0'%20inkscape:pagecheckerboard='0'%20inkscape:deskcolor='%23d1d1d1'%3e%3cinkscape:page%20x='0'%20y='0'%20width='107.30001'%20height='140.79999'%20id='page2'%20margin='0'%20bleed='0'%20/%3e%3c/sodipodi:namedview%3e%3cstyle%20type='text/css'%20id='style1'%3e%20.st0{fill:%231F1FA3;}%20.st1{fill:url(%23SVGID_1_);}%20.st2{fill:url(%23SVGID_00000033333245342322421190000001486717665348835473_);}%20.st3{fill:url(%23SVGID_00000075852413222229328580000001131059578544388517_);}%20%3c/style%3e%3cg%20id='g9'%20transform='translate(-21.299999,-20.6)'%3e%3clinearGradient%20id='SVGID_1_'%20gradientUnits='userSpaceOnUse'%20x1='4.8695998'%20y1='142.78'%20x2='99.248901'%20y2='35.348301'%3e%3cstop%20offset='0'%20style='stop-color:%2347EFF0'%20id='stop4'%20/%3e%3cstop%20offset='1'%20style='stop-color:%23297BFF'%20id='stop5'%20/%3e%3c/linearGradient%3e%3crect%20x='21.299999'%20y='64'%20class='st1'%20width='19.9'%20height='97.400002'%20id='rect5'%20style='fill:url(%23SVGID_1_)'%20/%3e%3clinearGradient%20id='SVGID_00000007421653842672228110000012418760815982452352_'%20gradientUnits='userSpaceOnUse'%20x1='23.7796'%20y1='159.3925'%20x2='118.1588'%20y2='51.9608'%3e%3cstop%20offset='0'%20style='stop-color:%2347EFF0'%20id='stop6'%20/%3e%3cstop%20offset='1'%20style='stop-color:%23297BFF'%20id='stop7'%20/%3e%3c/linearGradient%3e%3cpath%20style='fill:url(%23SVGID_00000007421653842672228110000012418760815982452352_)'%20d='M%2072.3,64%20H%2064%20v%2075.2%20H%2085.1%20V%2076.8%20C%2085.1,69.7%2079.4,64%2072.3,64%20Z'%20id='path7'%20/%3e%3clinearGradient%20id='SVGID_00000072986549029232277750000008760038133176911550_'%20gradientUnits='userSpaceOnUse'%20x1='20.501699'%20y1='156.51289'%20x2='114.881'%20y2='49.0812'%3e%3cstop%20offset='0'%20style='stop-color:%2347EFF0'%20id='stop8'%20/%3e%3cstop%20offset='1'%20style='stop-color:%23297BFF'%20id='stop9'%20/%3e%3c/linearGradient%3e%3cpath%20style='fill:url(%23SVGID_00000072986549029232277750000008760038133176911550_)'%20d='M%2073.6,20.6%20H%2064%20v%2019.9%20h%209.6%20c%2019.3,0%2035.1,15.7%2035.1,35.1%20v%2044.3%20h%2019.9%20V%2075.6%20c%200,-30.3%20-24.7,-55%20-55,-55%20z'%20id='path9'%20/%3e%3c/g%3e%3c/svg%3e)
Name
ovmf
Version
edk2-sta
Type
library
Description
OVMF - UEFI firmware for Qemu and KVM
Licenses
BSD-2-Clause-Patent
PURL
-
CPE
cpe:2.3:*:*:edk2:edk2-stable202402:*:*:*:*:*:*:*
Other Versions#
Patches#
#
Title
Author
Resolve
1
MdeModulePkg : Clear keyboard queue buffer after reading
Hongxu Jia <hongxu.jia@windriver.com>
CVE-2024-38798
2
OvmfPkg/QemuKernelLoaderFsDxe: rework direct kernel
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
3
BaseTools/Pccts: set C standard
Gerd Hoffmann <kraxel@redhat.com>
4
OvmfPkg/QemuKernelLoaderFsDxe: add support for named
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
5
MdeModulePkg: Potential UINT32 overflow in S3 ResumeCount
Hongxu Jia <hongxu.jia@windriver.com>
CVE-2024-1298
6
ovmf: update path to native BaseTools
Ricardo Neri <ricardo.neri-calderon@linux.intel.com>
7
OvmfPkg/X86QemuLoadImageLib: make legacy loader
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
8
BaseTools: makefile: adjust to build in under bitbake
Ricardo Neri <ricardo.neri-calderon@linux.intel.com>
9
OvmfPkg/X86QemuLoadImageLib: support booting via shim
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
10
BaseTools/EfiRom: fix compiler warning
Gerd Hoffmann <kraxel@redhat.com>
11
BaseTools/StringFuncs: fix gcc 16 warning
Gerd Hoffmann <kraxel@redhat.com>
12
OvmfPkg/QemuKernelLoaderFsDxe: allow longer file names
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
13
MdePkg: Fix overflow issue in BasePeCoffLib
Doug Flick <dougflick@microsoft.com>
CVE-2024-38796
14
AmdSev: Halt on failed blob allocation
Tobin Feldman-Fitzthum <tobin@linux.ibm.com>
15
OvmfPkg/GenericQemuLoadImageLib: support booting via
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
16
OvmfPkg/QemuKernelLoaderFsDxe: drop bogus assert
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
17
debug prefix map
Alexander Kanavin <alex.kanavin@gmail.com>
18
OvmfPkg/QemuKernelLoaderFsDxe: don't quit when named
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
19
reproducible
Alexander Kanavin <alex.kanavin@gmail.com>
20
OvmfPkg/QemuKernelLoaderFsDxe: accept absolute paths
Gerd Hoffmann <kraxel@redhat.com>
CVE-2025-2296
Vulnerabilities#
Name
Analysis
Description
Patched
EDK2 contains a vulnerability in BIOS where an attacker may cause “ Improper Input Validation” by local access. Successful exploitation of this vulnerability could alter control flow in unexpected ways, potentially allowing arbitrary command execution and impacting Confidentiality, Integrity, and Availability.
Patched
EDK2 contains a vulnerability in BIOS where an attacker may cause “Exposure of Sensitive Information to an Unauthorized Actor” by local access. Successful exploitation of this vulnerability will lead to
possible information disclosure or escalation of privilege
and impact Confidentiality.
Patched
EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.
Patched
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
Not Affected
Logic issue EDK II may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Not Affected
Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.
Not Affected
Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
Not Affected
Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
Not Affected
Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.
Not Affected
Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access.
Not Affected
Improper authentication in EDK II may allow a privileged user to potentially enable information disclosure via network access.
Not Affected
Buffer overflow in the Reclaim function in Tianocore EDK2 before SVN 16280 allows physically proximate attackers to gain privileges via a long variable name.
Not Affected
Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase in the Capsule Update feature in the UEFI implementation in EDK2 allow physically proximate attackers to bypass intended access restrictions by providing crafted data that is not properly handled during the coalescing phase.
Not Affected
Integer overflow in the Drive Execution Environment (DXE) phase in the Capsule Update feature in the UEFI implementation in EDK2 allows physically proximate attackers to bypass intended access restrictions via crafted data.