Debian alert DLA-4207-1 (edk2)

From:
             
 
Markus Koschany <apo@debian.org>
To:
             
 
debian-lts-announce <debian-lts-announce@lists.debian.org>
Subject:
             
 
[SECURITY] [DLA 4207-1] edk2 security update
Date:
             
 
Thu, 05 Jun 2025 22:48:23 +0200
Message-ID:
             
 
<5a1612d834845771376b795df04f080da2f64436.camel@debian.org>
-------------------------------------------------------------------------
Debian LTS Advisory DLA-4207-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                      Markus Koschany
June 05, 2025                                 https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package        : edk2
Version        : 2020.11-2+deb11u3
CVE ID         : CVE-2021-28216 CVE-2021-38575 CVE-2021-38576 CVE-2021-38578 
                 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 CVE-2023-45229 
                 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 
                 CVE-2023-45234 CVE-2023-45235 CVE-2024-1298 CVE-2024-38796
Debian Bug     : 1014468 1060408 1084055 1061256

Multiple security vulnerabilities have been fixed in EDK II, a modern,
feature-rich, cross-platform firmware development environment. Remotely
exploitable buffer overflows and out-of-bounds or infinite loop
vulnerabilities may lead to a denial of service or the execution of
arbitrary code.

For Debian 11 bullseye, these problems have been fixed in version
2020.11-2+deb11u3.

We recommend that you upgrade your edk2 packages.

For the detailed security status of edk2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/edk2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Attachment: signature.asc (type=application/pgp-signature)
-----BEGIN PGP SIGNATURE-----
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=ikx0
-----END PGP SIGNATURE-----