漏洞标题
N/A
漏洞描述信息
DMA交易,针对用于SdHostDriver软件SMI处理器的输入缓冲区,可能导致SMRAM corruption通过TOCTOU攻击。针对用于SdHostDriver driver使用的软件SMI处理器的输入缓冲区进行DMA交易,可能导致SMRAM corruption通过TOCTOU攻击。此问题由insyde engineering根据英特尔的iSTARE组提供的整体描述发现。在内核5.2:05.27.25修复,内核5.3:05.36.25修复,内核5.4:05.44.25修复,内核5.5:05.52.25修复,链接https://www.insyde.com/security-pledge/SA-2022050。
CVSS信息
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the SdHostDriver driver could cause SMRAM corruption through a TOCTOU attack. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. Fixed in kernel 5.2: 05.27.25, kernel 5.3: 05.36.25, kernel 5.4: 05.44.25, kernel 5.5: 05.52.25 https://www.insyde.com/security-pledge/SA-2022050
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Insyde InsydeH2O 安全漏洞
漏洞描述信息
Insyde InsydeH2O是中国台湾系微(Insyde)公司的一个 C 语言源,它实现了新技术“EFI/UEFI”规范,旨在取代传统的 BIOS(基本输入/输出系统)。 Insyde InsydeH2O SdHostDriver 存在安全漏洞,该漏洞源于 SMI handler 的输入缓冲区易受到直接内存访问(DMA)攻击。
CVSS信息
N/A
漏洞类别
其他