Описание
ELSA-2022-9465: shim security update (IMPORTANT)
[15.6-1.0.3]
- Update shimx64.efi and shimia32.efi signed by Microsoft [JIRA: OLDIS-16370]
[15.6-1.0.2]
- Update to shim-unsigned v15.6.rc2 [JIRA: OLDIS-16370]
[15.6-1.0.1]
- Update to shim-unsigned v15.6.rc1 [JIRA: OLDIS-16370]
[15.5-1.0.3]
- Update vendor certs [JIRA: OLDIS-16370]
- Update oracle(grub2-sig-key) [JIRA: OLDIS-16370]
[15.5-1.0.1]
- Allow MokListTrusted to be enabled by default [Orabug: 33770149]
- Add patchset to load additional certificates from vendor signed EFI binary [Orabug: 33770149]
Обновленные пакеты
Oracle Linux 8
Oracle Linux x86_64
shim-ia32
15.6-1.0.3.el8
shim-x64
15.6-1.0.3.el8
Связанные CVE
Связанные уязвимости
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
There's a possible overflow in handle_image() when shim tries to load ...