First published: Thu May 13 2021(Updated: )
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
Credit: infosec@edk2.groups.io infosec@edk2.groups.io
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/edk2 | <0:20221207gitfff6d81270b5-9.el9_2 | 0:20221207gitfff6d81270b5-9.el9_2 |
Tianocore EDK2 | <=202202 | |
Insyde Kernel | =5.0 | |
Insyde Kernel | =5.1 | |
Insyde Kernel | =5.2 | |
Insyde Kernel | =5.3 | |
Insyde Kernel | =5.4 | |
Insyde Kernel | =5.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-38578 is a vulnerability in edk2 that allows a local attacker with administration privileges to execute code within the system management mode (SMM) context.
CVE-2021-38578 has a severity score of 9.8 (Critical).
CVE-2021-38578 occurs due to an integer underflow in the SmmEntryPoint function in edk2, leading to a write into the SMM region.
CVE-2021-38578 affects systems running edk2 with the specified versions and installations of Tianocore Edk2 and Insyde Kernel.
To fix CVE-2021-38578, update the affected software to the specified versions provided by the vendor.