-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 05 Nov 2024 06:10:49 -0700
Source: edk2
Architecture: source
Version: 2022.11-6+deb12u2
Distribution: bookworm
Urgency: medium
Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
Changed-By: dann frazier <dannf@debian.org>
Closes: 1084055
Changes:
edk2 (2022.11-6+deb12u2) bookworm; urgency=medium
.
* Fix overflow condition in PeCoffLoaderRelocateImage(), CVE-2024-38796:
- d/p/0001-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch
- d/p/0002-MdePkg-Improving-readability-of-CVE-patch-for-PeCoff.patch
(Closes: #1084055)
* Fix potential UINT32 overflow in S3 ResumeCount. CVE-2024-1298:
- d/p/MdeModulePkg-Potential-UINT32-overflow-in-S3-ResumeC.patch
Checksums-Sha1:
fbb981c562b4b32d0c38cb6e5a07cda9e90e163c 2104 edk2_2022.11-6+deb12u2.dsc
3f21c66b87c4374419e96c247e2f9075ff2648c5 77616 edk2_2022.11-6+deb12u2.debian.tar.xz
7cf9a4ac46ace5870920fb1f720784bb769d4378 10245 edk2_2022.11-6+deb12u2_source.buildinfo
Checksums-Sha256:
3129d783c9017f738af4453c9f94a2fdfba2ee91cf409c0c3623b31377e76cc6 2104 edk2_2022.11-6+deb12u2.dsc
a1d848115ae9b140e64d3ab34f7c08210b665bee473e3242a6801c163678780e 77616 edk2_2022.11-6+deb12u2.debian.tar.xz
d4aee2abfe88b6a68ac029bb0628250e542923100527a3ec1066757a276d4acc 10245 edk2_2022.11-6+deb12u2_source.buildinfo
Files:
3dcc05330c7d63728ff92f954af30a6f 2104 misc optional edk2_2022.11-6+deb12u2.dsc
e77ae4ba36f9ec4b9d6390c81322beec 77616 misc optional edk2_2022.11-6+deb12u2.debian.tar.xz
2a12ab3f62f409b0fa50adb61561b163 10245 misc optional edk2_2022.11-6+deb12u2_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iIcEARYKAC8WIQQoGlxLiiPDxHQh9i5UW4ZA9GI6WAUCZ83KghEcZGFubmZAZGVi
aWFuLm9yZwAKCRBUW4ZA9GI6WHn9AQDFzL2DlaoCMkuqetr13c9CeueaMlNc8H+e
GR0+PQKGIwD5ATMM787hrfhjQG32/k7upJ59CYXMFALZ5LHsujstkQY=
=hb+9
-----END PGP SIGNATURE-----
Attachment:
pgpgN09P8R6In.pgp
Description: PGP signature