diff options
| author | Doug Flick <dougflick@microsoft.com> | 2024-02-13 10:46:03 -0800 |
|---|---|---|
| committer | mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> | 2024-02-14 03:28:11 +0000 |
| commit | 5fd3078a2e08f607dc86a16c1b184b6e30a34a49 (patch) | |
| tree | 3d749097c6cf76976cca298b8c617b62ffe8372c /NetworkPkg | |
| parent | 75deaf5c3c0d164c61653258c331151241bb69d8 (diff) | |
| download | edk2-5fd3078a2e08f607dc86a16c1b184b6e30a34a49.tar.gz edk2-5fd3078a2e08f607dc86a16c1b184b6e30a34a49.tar.bz2 edk2-5fd3078a2e08f607dc86a16c1b184b6e30a34a49.zip | |
NetworkPkg: : Updating SecurityFixes.yaml
This captures the related security change for Dhcp6Dxe that is related
to CVE-2023-45229
Cc: Saloni Kasbekar <saloni.kasbekar@intel.com>
Cc: Zachary Clark-williams <zachary.clark-williams@intel.com>
Signed-off-by: Doug Flick [MSFT] <doug.edk2@gmail.com>
Reviewed-by: Saloni Kasbekar <saloni.kasbekar@intel.com>
Reviewed-by: Leif Lindholm <quic_llindhol@quicinc.com>
Diffstat (limited to 'NetworkPkg')
| -rw-r--r-- | NetworkPkg/SecurityFixes.yaml | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/NetworkPkg/SecurityFixes.yaml b/NetworkPkg/SecurityFixes.yaml index 7e900483fe..fa42025e0d 100644 --- a/NetworkPkg/SecurityFixes.yaml +++ b/NetworkPkg/SecurityFixes.yaml @@ -8,6 +8,7 @@ CVE_2023_45229: commit_titles:
- "NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Patch"
- "NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Unit Tests"
+ - "NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Related Patch"
cve: CVE-2023-45229
date_reported: 2023-08-28 13:56 UTC
description: "Bug 01 - edk2/NetworkPkg: Out-of-bounds read when processing IA_NA/IA_TA options in a DHCPv6 Advertise message"
|