SUSE-SU-2026:0213-1

UNKNOWN

Security update for ovmf

Published Jan 22, 2026

Modified 1 months ago

Fix available

Details

This update for ovmf fixes the following issues:

CVE-2022-36765: Fixed integer overflow to buffer overflow via local network vulnerability (bsc#1218680).

Affected Packages

ovmf

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Micro 5.5SUSE Linux Enterprise Server 15 SP5-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP5

Fixed in:

202208-150500.6.12.1

ovmf-tools

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Server 15 SP5-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP5

Fixed in:

202208-150500.6.12.1

qemu-ovmf-x86_64

Fixed in:

202208-150500.6.12.1

qemu-uefi-aarch64

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Micro 5.5SUSE Linux Enterprise Server 15 SP5-LTSS

Fixed in:

202208-150500.6.12.1

References

REPORT

https://bugzilla.suse.com/1218680

WEB

https://www.suse.com/security/cve/CVE-2022-36765

ADVISORY

https://www.suse.com/support/update/announcement/2026/suse-su-20260213-1/

Upstream

CVE-2022-36765

Ecosystems

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Server 15 SP5-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP5

Timeline

PublishedJan 22, 2026

ModifiedJan 22, 2026