]> xenbits.xensource.com Git - people/aperard/ovmf.git/commitdiff
projects / people / aperard / ovmf.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 75deaf5)
NetworkPkg: : Updating SecurityFixes.yaml
authorDoug Flick <dougflick@microsoft.com>
Tue, 13 Feb 2024 18:46:03 +0000 (10:46 -0800)
committermergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Wed, 14 Feb 2024 03:28:11 +0000 (03:28 +0000)
This captures the related security change for Dhcp6Dxe that is related
to CVE-2023-45229

Cc: Saloni Kasbekar <saloni.kasbekar@intel.com>
Cc: Zachary Clark-williams <zachary.clark-williams@intel.com>
Signed-off-by: Doug Flick [MSFT] <doug.edk2@gmail.com>
Reviewed-by: Saloni Kasbekar <saloni.kasbekar@intel.com>
Reviewed-by: Leif Lindholm <quic_llindhol@quicinc.com>
NetworkPkg/SecurityFixes.yaml patch | blob | blame | history

diff --git a/NetworkPkg/SecurityFixes.yaml b/NetworkPkg/SecurityFixes.yaml
index 7e900483fec54022add31f5dea1affd91f562078..fa42025e0d824d9e9de81258f5eb9f19b4700d48 100644 (file)
--- a/NetworkPkg/SecurityFixes.yaml
+++ b/NetworkPkg/SecurityFixes.yaml
@@ -8,6 +8,7 @@ CVE_2023_45229:
   commit_titles:\r
     - "NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Patch"\r
     - "NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Unit Tests"\r
+    - "NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Related Patch"\r
   cve: CVE-2023-45229\r
   date_reported: 2023-08-28 13:56 UTC\r
   description: "Bug 01 - edk2/NetworkPkg: Out-of-bounds read when processing IA_NA/IA_TA options in a DHCPv6 Advertise message"\r
OVMF