packages/edk2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
99 Commits 1 Branch 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
hy 3dace7f7b0 Fixes CVE-2024-13176、CVE-2024-4741、CVE-2023-5363
2025-02-25 23:44:47 +08:00
0001-OvmfPkg-VirtioNetDxe-Extend-the-RxBufferSize-to-avoi.patch
upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment.
2023-09-12 10:08:28 +08:00
0002-add-Wno-maybe-uninitialized-to-fix-build-error.patch
upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment.
2023-09-12 10:08:28 +08:00
0003-Add-testcases-for-empty-associated-data-entries-with.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0004-Do-not-ignore-empty-associated-data-with-AES-SIV-mod.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0005-Add-a-test-for-CVE-2023-3446.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0006-Fix-DH_check-excessive-time-with-over-sized-modulus.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0007-Make-DH_check-set-some-error-bits-in-recently-added-.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0008-DH_check-Do-not-try-checking-q-properties-if-it-is-o.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0009-dhtest.c-Add-test-of-DH_check-with-q-p-1.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0010-Add-NULL-checks-where-ContentInfo-data-can-be-NULL.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0011-poly1305-ppc.pl-Fix-vector-register-clobbering.patch
Fix some CVE
2024-03-01 11:18:10 +08:00
0012-SecurityPkg-DxeTpm2MeasureBootLib-SECURITY-PATCH-411.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0013-SecurityPkg-DxeTpmMeasureBootLib-SECURITY-PATCH-4117.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0014-SecurityPkg-Adding-CVE-2022-36763-to-SecurityFixes.y.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0015-SecurityPkg-DxeTpm2MeasureBootLib-SECURITY-PATCH-411.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0016-SecurityPkg-DxeTpmMeasureBootLib-SECURITY-PATCH-4118.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0017-SecurityPkg-Adding-CVE-2022-36764-to-SecurityFixes.y.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0018-SecurityPkg-DxeTpm2MeasureBootLib-SECURITY-PATCH-411.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0019-SecurityPkg-DxeTpmMeasureBootLib-SECURITY-PATCH-4117.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0020-EmbeddedPkg-Hob-Integer-Overflow-in-CreateHob.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0021-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Pa.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0021-StandaloneMmPkg-Hob-Integer-Overflow-in-CreateHob.patch
Fix some CVE
2024-03-11 09:58:09 +08:00
0022-NetworkPkg-Add-Unit-tests-to-CI-and-create-Host-Test.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0023-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Un.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0024-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45229-Pa.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0025-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45229-Un.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0026-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45231-Patc.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0027-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45231-Unit.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0028-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45232-Patc.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0029-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45232-Unit.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0030-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0031-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0032-MdePkg-Test-Add-gRT_GetTime-Google-Test-Mock.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0033-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0034-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0035-NetworkPkg-Adds-a-SecurityFix.yaml-file.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0036-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45229-Re.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0037-NetworkPkg-Dhcp6Dxe-Removes-duplicate-check-and-repl.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0038-NetworkPkg-Dhcp6Dxe-Packet-Length-is-not-updated-bef.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0039-NetworkPkg-Updating-SecurityFixes.yaml.patch
Fix som CVE
2024-03-18 10:53:43 +08:00
0040-Add-a-test-for-session-cache-handling.patch
Fix CVE-2023-6237、CVE-2024-2511
2024-04-17 16:02:11 +08:00
0041-Extend-the-multi_resume-test-for-simultaneous-resump.patch
Fix CVE-2023-6237、CVE-2024-2511
2024-04-17 16:02:11 +08:00
0042-Fix-unconstrained-session-cache-growth-in-TLSv1.3.patch
Fix CVE-2023-6237、CVE-2024-2511
2024-04-17 16:02:11 +08:00
0043-Hardening-around-not_resumable-sessions.patch
Fix CVE-2023-6237、CVE-2024-2511
2024-04-17 16:02:11 +08:00
0044-Add-a-test-for-session-cache-overflow.patch
Fix CVE-2023-6237、CVE-2024-2511
2024-04-17 16:02:11 +08:00
0045-Limit-the-execution-time-of-RSA-public-key-check.patch
Fix CVE-2023-6237、CVE-2024-2511
2024-04-17 16:02:11 +08:00
0046-MdeModulePkg-Potential-UINT32-overflow-in-S3-ResumeC.patch
Fix CVE-2024-1298
2024-06-11 17:48:09 +08:00
0047-Fix-SSL_select_next_proto-and-add-ALPN-validation-in.patch
Fix CVE-2024-5535
2024-07-11 19:49:46 +08:00
0048-Add-a-test-for-ALPN-and-NPN.patch
Fix CVE-2024-5535
2024-07-11 19:49:46 +08:00
0049-Avoid-type-errors-in-EAI-related-name-check-logic.patch
Fix CVE-2024-6119
2024-09-05 15:24:44 +08:00
0050-Revert-Platform-Loongson-LoongArchQemuPkg-Add-ImageP.patch
add LoongArch support
2024-09-13 10:57:43 +08:00
0051-Revert-Platform-Loongson-Fix-compile-error.patch
add LoongArch support
2024-09-13 10:57:43 +08:00
0052-Revert-LoongArchQemuPkg-auto-gen-fix-SEC-ProcessLibr.patch
add LoongArch support
2024-09-13 10:57:43 +08:00
0053-relax_edk2_gcc14.patch
add LoongArch support
2024-09-13 10:57:43 +08:00
0054-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch
fix CVE-2024-38796
2024-10-09 16:00:51 +08:00
0055-MdePkg-Add-StandardSignatureIsHygonGenuine-in-BaseCp.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0056-UefiCpuPkg-LocalApicLib-Exclude-second-SendIpi-seque.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0057-OvmfPkg-Add-CSV-secure-call-library-on-Hygon-CPU.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0058-OvmfPkg-ResetVector-Support-CSV-in-ResetVector-phase.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0059-OvmfPkg-PlatformPei-Initialize-CSV-VM-s-memory.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0060-OvmfPkg-BaseMemcryptSevLib-update-page-status-to-Sec.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0061-OvmfPkg-Tcg-Add-CsvLib-for-TpmMmioSevDecryptPei.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0062-OvmfPkg-Add-CsvDxe-driver.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0063-OvmfPkg-IoMmuDxe-Add-CsvIoMmu-protocol.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0064-OvmfPkg-Reserve-a-CPUID-table-page-for-CSV-guest.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0065-OvmfPkg-Use-classic-mmio-window-for-CSV-guest.patch
Add support for Hygon CSV3 guest
2024-10-20 18:06:07 +08:00
0066-NetworkPkg-SECURITY-PATCH-CVE-2023-45237.patch
Fix CVE-2023-45236、CVE-2023-45237
2024-10-15 23:04:06 +08:00
0067-NetworkPkg-TcpDxe-SECURITY-PATCH-CVE-2023-45236.patch
Fix CVE-2023-45236、CVE-2023-45237
2024-10-15 23:04:06 +08:00
0068-OvmfPkg-BaseMemEncryptLib-Detect-SEV-live-migration-.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0069-OvmfPkg-BaseMemEncryptLib-Hypercall-API-for-page-enc.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0070-OvmfPkg-BaseMemEncryptLib-Invoke-page-encryption-sta.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0071-OvmfPkg-VmgExitLib-Encryption-state-change-hypercall.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0072-OvmfPkg-PlatformPei-Mark-SEC-GHCB-page-as-unencrypte.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0073-OvmfPkg-AmdSevDxe-Add-support-for-SEV-live-migration.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0074-OvmfPkg-BaseMemcryptSevLib-Correct-the-calculation-o.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0075-OvmfPkg-BaseMemEncryptLib-Return-SUCCESS-if-not-supp.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0076-OvmfPkg-BaseMemEncryptLib-Save-memory-encrypt-status.patch
Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC
2024-10-23 18:02:32 +08:00
0077-VirtioDxe-add-support-of-MMIO-Bar-for-virtio-devices.patch
vdpa: support vdpa blk/scsi device boot
2024-11-29 11:09:52 +08:00
0078-Virtio-wait-virtio-device-reset-done.patch
vdpa: support vdpa blk/scsi device boot
2024-11-29 11:09:52 +08:00
0079-VirtioBlk-split-large-IO-according-to-segment_size_m.patch
vdpa: support vdpa blk/scsi device boot
2024-11-29 11:09:52 +08:00
0080-Fix-timing-side-channel-CVE-2024-13176.patch
Fixes CVE-2024-13176、CVE-2024-4741、CVE-2023-5363
2025-02-25 23:44:47 +08:00
0081-Free-the-read-buffers-CVE-2024-4741.patch
Fixes CVE-2024-13176、CVE-2024-4741、CVE-2023-5363
2025-02-25 23:44:47 +08:00
0082-Process-key-length-CVE-2023-5363.patch
Fixes CVE-2024-13176、CVE-2024-4741、CVE-2023-5363
2025-02-25 23:44:47 +08:00
brotli.f4153a09f87cbb9c826d8fc12c74642bb2d879ea.tar.gz
upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment.
2023-09-12 10:08:28 +08:00
edk2-aarch64-verbose-raw.json
Added firmware scanning directory mapping for libvirt XML
2024-01-25 17:44:47 +08:00
edk2-loongarch64.json
add LoongArch support
2024-09-13 10:57:43 +08:00
edk2-ovmf-x64-nosb.json
Added firmware scanning directory mapping for libvirt XML
2024-01-25 17:44:47 +08:00
edk2-platforms-35bca3ca71c0.tar.xz
add LoongArch support
2024-09-13 10:57:43 +08:00
edk2-stable202308.tar.gz
upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment.
2023-09-12 10:08:28 +08:00
edk2.spec
Fixes CVE-2024-13176、CVE-2024-4741、CVE-2023-5363
2025-02-25 23:44:47 +08:00
openssl.de90e54bbe82e5be4fb9608b6f5c308bb837d355.tar.gz
upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment.
2023-09-12 10:08:28 +08:00
public-mipi-sys-t.370b5944c046bab043dd8b133727b2135af7747a.tar.gz
upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment.
2023-09-12 10:08:28 +08:00
Description
No description provided
126 MiB
Languages
Diff 100%