CVE-2020-26541

Опубликовано: 02 окт. 2020

Источник: debian

EPSS Низкий

Описание

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	5.14.6-1		package
linux	fixed	5.10.70-1	bullseye	package
linux	not-affected		stretch	package

Примечания

https://lkml.org/lkml/2020/9/15/1871

EPSS

Процентиль: 5%

0.00024

Низкий

Связанные уязвимости

CVE-2020-26541

CVSS3: 6.5

ubuntu

больше 4 лет назад

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

CVE-2020-26541

CVSS3: 6.5

redhat

почти 5 лет назад

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

CVE-2020-26541

CVSS3: 6.5

nvd

больше 4 лет назад

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

CVE-2020-26541

CVSS3: 6.5

msrc

больше 4 лет назад

Описание отсутствует

GHSA-f823-qm69-5873

github

около 3 лет назад

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

EPSS

Процентиль: 5%

0.00024

Низкий