[ALSA-2026:18465] Important: edk2 security update
Type:
security
Severity:
important
Release date:
2026-05-26
Description:
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * edk2: EDK2: Improper Input Validation allows arbitrary command execution (CVE-2025-2296) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 edk2-tools-20251114-5.el10_2.aarch64.rpm ff5421487408138c0df8a84f7e1e5dc1f29a6a2f5bacb012092eef6ea158e59d
noarch edk2-ovmf-20251114-5.el10_2.noarch.rpm 0440f37c3dfa7d8ed89074f19a592ec31ae69caf218c9c023a8e521cbedd1c05
noarch edk2-aarch64-20251114-5.el10_2.noarch.rpm 661e753247f1f87f60b2ab15a15e98b65bd5218f23543c33c5087b94428cc7aa
noarch edk2-tools-doc-20251114-5.el10_2.noarch.rpm e4125b18bdc63df22c74502b4db7c806c49d68b682c355411ff7150e30479c2e
x86_64 edk2-tools-20251114-5.el10_2.x86_64.rpm 41d920871385e1d9ef36bcea329cf3fa5f68e30bca3dc55d6663a37cc6495deb
x86_64_v2 edk2-tools-20251114-5.el10_2.x86_64_v2.rpm ccb4c8f45fa79f2761aa1f16d9f60765f7503cd13fc10c192de1738bff66b7eb
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.