Release date:
2025-11-25 09:18:10 UTC
Description:
- CVE-2023-45236: fix TCP Initial Sequence Number generation in NetworkPkg
to prevent predictable sequence numbers
- CVE-2023-45237: fix weak pseudo-random number generator in NetworkPkg
to prevent predictable TCP sequence numbers
Updated packages:
-
edk2-aarch64-20221207gitfff6d81270b5-9.el9_2.tuxcare.els3.noarch.rpm
sha:323e3f75435d7c17d83eb90a45e8010b08402edb40e10d2b4cb6a85c23d32fc7
-
edk2-ovmf-20221207gitfff6d81270b5-9.el9_2.tuxcare.els3.noarch.rpm
sha:5633be329b15c74e9dca53af0352a716a80802ce5f6b78ba94132b00a8628634
-
edk2-tools-20221207gitfff6d81270b5-9.el9_2.tuxcare.els3.x86_64.rpm
sha:dbcc43a2c135ca603e370e456c56b351786a46f39f9abee1fcd1ddaab7d35e63
-
edk2-tools-doc-20221207gitfff6d81270b5-9.el9_2.tuxcare.els3.noarch.rpm
sha:5651b4827dea0780b96e5682d74db56e9f8216e5fb2a96e503c7097b1c4a1cea
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
