Lucene search
OracleLinuxELSA-2024-1903HistoryApr 22, 2024 - 12:00 a.m.
shim bug fix update
2024-04-2200:00:00
linux.oracle.com
13
shim
bug fix
update
unix
microsoft
orabug
binaries
cve-2023-40546
sbat_automatic_date
8.3 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
7.4 High
AI Score
Confidence
Low
0.025 Low
EPSS
Percentile
90.2%
[15.8-1.0.3]
- Update shimx64.efi and shimaa64.efi v15.8 signed by Microsoft [Orabug: 36072879]
- Update shim fb and mm binaries to match unsigned releases [Orabug: 36072879]
[15.8-1.0.2] - Use binaries with correct shim.ol generation [Orabug: 36072879]
- Set SBAT_AUTOMATIC_DATE=2021030218 [Orabug: 36072879]
[15.8-1.0.1] - Update to 15.8 [Orabug: 36072879]
- fix CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549, CVE-2023-40550, CVE-2023-40551 [Orabug: 36072879]
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | shim | < 15.8-1.0.3.el9 | shim-15.8-1.0.3.el9.src.rpm |
| oracle linux | 9 | aarch64 | shim-aa64 | < 15.8-1.0.3.el9 | shim-aa64-15.8-1.0.3.el9.aarch64.rpm |
| oracle linux | 9 | src | shim | < 15.8-1.0.3.el9 | shim-15.8-1.0.3.el9.src.rpm |
| oracle linux | 9 | x86_64 | shim-x64 | < 15.8-1.0.3.el9 | shim-x64-15.8-1.0.3.el9.x86_64.rpm |
Related
fedora
fedora
[SECURITY] Fedora 38 Update: shim-unsigned-x64-15.8-2
2024-03-18 02:18:45
[SECURITY] Fedora 38 Update: shim-15.8-2
2024-03-18 02:18:44
[SECURITY] Fedora 38 Update: shim-unsigned-aarch64-15.8-2
2024-03-18 02:18:45
redhat
redhat
(RHSA-2024:1873) Important: shim security update
2024-04-18 00:58:14
(RHSA-2024:1834) Important: shim security update
2024-04-16 13:24:13
(RHSA-2024:1876) Important: shim bug fix update
2024-04-18 00:58:24
nessus
nessus
RHEL 9 : shim update (Important) (RHSA-2024:1903)
2024-04-20 00:00:00
RHEL 8 : shim (RHSA-2024:1873)
2024-04-18 00:00:00
RHEL 8 : shim (RHSA-2024:2086)
2024-04-29 00:00:00
debian
debian
[SECURITY] [DLA 3813-1] shim security update
2024-05-14 09:57:15
oraclelinux
oraclelinux
shim security update
2024-04-25 00:00:00
shim security update
2024-05-01 00:00:00
openvas
openvas
Fedora: Security Advisory for shim-unsigned-aarch64 (FEDORA-2024-2aa28a4cfc)
2024-03-25 00:00:00
Debian: Security Advisory (DLA-3813-1)
2024-05-14 00:00:00
Fedora: Security Advisory for shim (FEDORA-2024-2aa28a4cfc)
2024-03-25 00:00:00
redos
redos
ROS-20240411-07
2024-04-11 00:00:00
almalinux
almalinux
Important: shim bug fix update
2024-04-18 00:00:00
Important: shim security update
2024-04-18 00:00:00
osv
osv
Important: shim security update
2024-04-18 00:00:00
Important: shim bug fix update
2024-04-18 00:00:00
shim - security update
2024-05-13 00:00:00
thn
thn
Critical Boot Loader Vulnerability in Shim Impacts Nearly All Linux Distros
2024-02-07 13:33:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-06-06 14:36:19
cve
cve
redhatcve
redhatcve
debiancve
debiancve
nvd
nvd
prion
prion
Format string
2024-01-29 17:15:00
Heap overflow
2024-01-29 15:15:00
Design/Logic Flaw
2024-01-29 17:15:00
cvelist
cvelist
ubuntucve
ubuntucve
amazon
amazon
Important: shim
2024-02-29 10:03:00
vulnrichment
vulnrichment
CVE-2023-40551 Shim: out of bounds read when parsing mz binaries
2024-01-29 16:46:43
rosalinux
rosalinux
Advisory ROSA-SA-2024-2354
2024-02-20 09:39:18
Advisory ROSA-SA-2024-2353
2024-02-20 09:38:41
Advisory ROSA-SA-2024-2385
2024-03-28 06:53:29
cnvd
cnvd
Shim Buffer Overflow Vulnerability
2024-02-22 00:00:00
8.3 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
7.4 High
AI Score
Confidence
Low
0.025 Low
EPSS
Percentile
90.2%
Related for ELSA-2024-1903