] [PATCH v2 00/13]
NetworkPkg: CVE-2023-45236 and CVE-2023-45237
>From the two CVE patches there should be no functional differences to a
>platform assuming the platform provides them with a RNG implementation and
>HASH2 implementation.
The "NetworkPkg:: SECURITY PATCH CVE-2023
>From the two CVE patches there should be no functional differences to a
>platform assuming the platform provides them with a RNG implementation and
>HASH2 implementation.
The "NetworkPkg:: SECURITY PATCH CVE-2023-45237" change simply get's it's
random numbers from outside of the NetworkPkg
Doug:
Is there any functionality impact by these two CVE fixes?
Thanks
Liming
> -邮件原件-
> 发件人: devel@edk2.groups.io 代表 Doug Flick via
> groups.io
> 发送时间: 2024年5月9日 13:56
> 收件人: devel@edk2.groups.io
> 抄送: Liming Gao
> 主题: [edk2-devel] [PATCH v2 00/13] NetworkPkg: CVE-2023-45236 and
>