CVE-2014-4859

NameCVE-2014-4859
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
edk2 (PTS)jessie/non-free0~20131112.2590861a-3vulnerable
stretch0~20161202.7bbe0b3e-1vulnerable
buster, sid0~20180105.0bc94c74-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
edk2source(unstable)(not affected)

Notes

- edk2 <not-affected> (No support for updates of hypervisor-supplied firmware from guests)
https://www.mitre.org/sites/default/files/publications/14-2221-extreme-escalation-presentation.pdf

Search for package or bug name: Reporting problems