Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

SUSE-SU-2026:20037-1 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceSUSE-SU-2026:20037-1

SUSE-SU-2026:20037-1

UNKNOWN

Security update for ovmf

Published Dec 30, 2025

Modified 2 weeks ago

Fix available

Details

This update for ovmf fixes the following issues:

CVE-2023-45229: integer underflow and out-of-bounds read when processing IA_NA/IA_TA options in a DHCPv6 Advertise message (bsc#1218879).
CVE-2023-45230: out-of-bounds write in the DHCPv6 client through a long Server ID option (bsc#1218880).

Affected Packages

ovmf

SUSE Linux Micro 6.0

Fixed in:

202305-2.1

qemu-ovmf-x86_64

SUSE Linux Micro 6.0

Fixed in:

202305-2.1

qemu-uefi-aarch64

SUSE Linux Micro 6.0

Fixed in:

202305-2.1

References

REPORThttps://bugzilla.suse.com/1218879 REPORThttps://bugzilla.suse.com/1218880 WEBhttps://www.suse.com/security/cve/CVE-2023-45229 WEBhttps://www.suse.com/security/cve/CVE-2023-45230 ADVISORYhttps://www.suse.com/support/update/announcement/2026/suse-su-202620037-1/

Upstream

CVE-2023-45229 CVE-2023-45230

Related

CVE-2023-45229 CVE-2023-45230

Ecosystems

SUSE Linux Micro 6.0

Timeline

PublishedDec 30, 2025

ModifiedDec 30, 2025