CVE-2022-30774

Name of the Vulnerable Software and Affected Versions InsydeH2O UEFI firmware versions prior to Kernel 5.2: 05.27.29 InsydeH2O UEFI firmware versions prior to Kernel 5.3: 05.36.25 InsydeH2O UEFI firmware versions prior to Kernel 5.4: 05.44.25 InsydeH2O UEFI firmware versions prior to Kernel 5.5: 05.52.25

Description The issue allows DMA attacks on the parameter buffer used by the PnpSmm driver, enabling changes to the contents after parameter values have been checked but before they are used, which is a Time-of-Check-to-Time-of-Use (TOCTOU) attack. This was discovered by Insyde engineering during a security review.

Recommendations For versions prior to Kernel 5.2: 05.27.29, update to Kernel 5.2: 05.27.29 or later. For versions prior to Kernel 5.3: 05.36.25, update to Kernel 5.3: 05.36.25 or later. For versions prior to Kernel 5.4: 05.44.25, update to Kernel 5.4: 05.44.25 or later. For versions prior to Kernel 5.5: 05.52.25, update to Kernel 5.5: 05.52.25 or later.