[Git][security-tracker-team/security-tracker][master] Add CVE-2024-38798/edk2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 9 21:15:03 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
135b83aa by Salvatore Bonaccorso at 2025-12-09T22:14:32+01:00
Add CVE-2024-38798/edk2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -788,7 +788,9 @@ CVE-2024-56464 (IBM QRadar SIEM7.5 - 7.5.0 UP14 IF01 is affected by an informati
CVE-2024-47570 (An insertion of sensitive information into log file vulnerability [CWE ...)
NOT-FOR-US: Fortinet
CVE-2024-38798 (EDK2 contains a vulnerability in BIOS where an attacker may cause \u20 ...)
- TODO: check
+ - edk2 <unfixed>
+ NOTE: https://github.com/tianocore/edk2/security/advisories/GHSA-q2c6-37h5-7cwf
+ NOTE: Fixed by: https://github.com/tianocore/edk2/commit/0cad130cb4885961da201bb9b08424b3fd3d2249 (edk2-stable202511)
CVE-2025-14333 (Memory safety bugs present in Firefox ESR 140.5, Thunderbird ESR 140.5 ...)
- firefox <unfixed>
- firefox-esr <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/135b83aa685f33edf51974149ea34a15dd8255d8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/135b83aa685f33edf51974149ea34a15dd8255d8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251209/9330c43c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list