Количество 25
Количество 25
CVE-2022-28737
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
CVE-2022-28737
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
CVE-2022-28737
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
CVE-2022-28737
CVE-2022-28737
There's a possible overflow in handle_image() when shim tries to load ...
SUSE-SU-2023:2150-1
Security update for shim
SUSE-SU-2023:2091-1
Security update for shim
SUSE-SU-2023:2086-1
Security update for shim
SUSE-SU-2023:2084-1
Security update for shim
SUSE-SU-2023:1863-1
Security update for shim
SUSE-SU-2023:1702-1
Security update for shim
GHSA-hmxr-46w2-jjwh
There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario.
ELSA-2022-9466
ELSA-2022-9466: shim-signed security update (IMPORTANT)
ELSA-2022-9465
ELSA-2022-9465: shim security update (IMPORTANT)
BDU:2023-05303
Уязвимость функции handle_image() UEFI-загрузчика shim, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
ROS-20240208-02
Уязвимость в shim
SUSE-SU-2024:1462-1
Security update for shim
SUSE-SU-2024:1461-1
Security update for shim
SUSE-SU-2024:1368-1
Security update for shim
RLSA-2022:5099
Important: grub2, mokutil, shim, and shim-unsigned-x64 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-28737 There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario. | CVSS3: 6.5 | 0% Низкий | почти 2 года назад |
 | CVE-2022-28737 There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario. | CVSS3: 7.3 | 0% Низкий | около 3 лет назад |
 | CVE-2022-28737 There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario. | CVSS3: 6.5 | 0% Низкий | почти 2 года назад |
 | CVSS3: 7.8 | 0% Низкий | 7 месяцев назад | |
| CVE-2022-28737 There's a possible overflow in handle_image() when shim tries to load ... | CVSS3: 6.5 | 0% Низкий | почти 2 года назад |
 | SUSE-SU-2023:2150-1 Security update for shim | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:2091-1 Security update for shim | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:2086-1 Security update for shim | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:2084-1 Security update for shim | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:1863-1 Security update for shim | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:1702-1 Security update for shim | 0% Низкий | около 2 лет назад | |
| GHSA-hmxr-46w2-jjwh There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario. | CVSS3: 6.5 | 0% Низкий | почти 2 года назад |
| ELSA-2022-9466 ELSA-2022-9466: shim-signed security update (IMPORTANT) | около 3 лет назад | ||
| ELSA-2022-9465 ELSA-2022-9465: shim security update (IMPORTANT) | около 3 лет назад | ||
 | BDU:2023-05303 Уязвимость функции handle_image() UEFI-загрузчика shim, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании | CVSS3: 6.5 | 0% Низкий | около 3 лет назад |
 | ROS-20240208-02 Уязвимость в shim | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| SUSE-SU-2024:1462-1 Security update for shim | около 1 года назад | ||
| SUSE-SU-2024:1461-1 Security update for shim | около 1 года назад | ||
| SUSE-SU-2024:1368-1 Security update for shim | около 1 года назад | ||
 | RLSA-2022:5099 Important: grub2, mokutil, shim, and shim-unsigned-x64 security update | около 3 лет назад |
Уязвимостей на страницу