CVE-2021-38575

Published: 14 September 2021

remote buffer overflow in IScsiHexToBin function in NetworkPkg/IScsiDxe

Priority

Status

Package	Release	Status
edk2 Launchpad, Ubuntu, Debian	Upstream	Released (2021.08-1)

	Ubuntu 21.04 (Hirsute Hippo)	Released (2020.11-4ubuntu0.1)
	Ubuntu 20.04 LTS (Focal Fossa)	Released (0~20191122.bd85bf54-2ubuntu3.3)
	Ubuntu 18.04 LTS (Bionic Beaver)	Needs triage
	Ubuntu 16.04 ESM (Xenial Xerus)	Ignored (out of standard support)
	Ubuntu 14.04 ESM (Trusty Tahr)	Does not exist
	Patches: Upstream: https://github.com/tianocore/edk2/pull/1698 Upstream: https://github.com/tianocore/edk2/commit/83761337ec91fbd459c55d7d956fcc25df3bfa50 Upstream: https://github.com/tianocore/edk2/commit/29cab43bb7912a12efa5a78dac15394aee866e4c Upstream: https://github.com/tianocore/edk2/commit/95616b866187b00355042953efa5c198df07250f Upstream: https://github.com/tianocore/edk2/commit/e8f28b09e63dfdbb4169969a43c65f86c44b035a Upstream: https://github.com/tianocore/edk2/commit/cf01b2dc8fc3ff9cf49fb891af5703dc03e3193e Upstream: https://github.com/tianocore/edk2/commit/d90fff40cb2502b627370a77f5608c8a178c3f78 Upstream: https://github.com/tianocore/edk2/commit/dc469f137110fe79704b8b92c552972c739bb915 Upstream: https://github.com/tianocore/edk2/commit/47b76780b487dbfde4efb6843b16064c4a97e94d Upstream: https://github.com/tianocore/edk2/commit/54e90edaed0d7c15230902ac4d74f4304bad2ebd Upstream: https://github.com/tianocore/edk2/commit/b8649cf2a3e673a4a8cb6c255e394b354b771550

References

Bugs

https://bugzilla.tianocore.org/show_bug.cgi?id=3356

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading