Описание
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw causes memory corruption and can lead to a crash or data integrity issues during the boot phase.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | sbat only update |
| esm-infra-legacy/trusty | not-affected | sbat only update |
| esm-infra/bionic | not-affected | sbat only update |
| esm-infra/focal | not-affected | sbat only update |
| esm-infra/xenial | not-affected | sbat only update |
| focal | not-affected | sbat only update |
| jammy | not-affected | sbat only update |
| lunar | ignored | end of life, was needs-triage |
| mantic | not-affected | sbat only update |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 15.8-0ubuntu1 |
| esm-infra-legacy/trusty | ignored | install media keys will never be revoked |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | needed | |
| esm-infra/xenial | ignored | install media keys will never be revoked |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 1.58 |
| esm-infra-legacy/trusty | ignored | install media keys will never be revoked |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | needed | |
| esm-infra/xenial | ignored | install media keys will never be revoked |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needed |
Показывать по
Ссылки на источники
EPSS
7.4 High
CVSS3
Связанные уязвимости
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw causes memory corruption and can lead to a crash or data integrity issues during the boot phase.
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw causes memory corruption and can lead to a crash or data integrity issues during the boot phase.
A buffer overflow was found in Shim in the 32-bit system. The overflow ...
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw causes memory corruption and can lead to a crash or data integrity issues during the boot phase.
EPSS
7.4 High
CVSS3