13 matches found
Scientific Linux Security Update : shim on SL7.x x86_64 (20141104)
A heap-based buffer overflow flaw was found the way shim parsed certain IPv6 addresses. If IPv6 network booting was enabled, a malicious server could supply a crafted IPv6 address that would cause shim to crash or, potentially, execute arbitrary code. CVE-2014-3676 An out-of-bounds memory write...
openSUSE Security Update : gnu-efi / pesign / shim (openSUSE-2015-48)
shim was updated to fix several security issues. - OOB read access when parsing DHCPv6 packets remote DoS CVE-2014-3675. - Heap overflow when parsing IPv6 addresses provided by tftp:// DHCPv6 boot option RCE CVE-2014-3676. - Memory corruption when processing user provided MOK lists CVE-2014-3677...
SuSE 11.3 Security Update : shim (SAT Patch Number 9997)
shim has been updated to fix three security issues : - OOB read access when parsing DHCPv6 packets remote DoS. CVE-2014-3675 - Heap overflow when parsing IPv6 addresses provided by tftp:// DHCPv6 boot option RCE. CVE-2014-3676 - Memory corruption when processing user provided MOK lists...
Fedora 19 : mokutil-0.2.0-1.fc19 / shim-signed-0.8-2 (2014-14059)
This update fixes CVEs CVE-2014-3675, CVE-2014-3676, and CVE-2014-3677, as well as moving to the 0.8 release, which adds support for Aarch64 and fixes several bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...
Fedora 20 : mokutil-0.2.0-1.fc20 / shim-signed-0.8-3 (2014-14058)
This update fixes CVEs CVE-2014-3675, CVE-2014-3676, and CVE-2014-3677, as well as moving to the 0.8 release, which adds support for Aarch64 and fixes several bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...
Fedora Update for mokutil FEDORA-2014-14059
Check the version of mokutil SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868481";...
Fedora Update for mokutil FEDORA-2014-14058
Check the version of mokutil SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868480";...
Fedora Update for shim-signed FEDORA-2014-14059
Check the version of shim-signed SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868475";...
Fedora Update for shim-signed FEDORA-2014-14058
Check the version of shim-signed SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868479";...
RHEL 7 : shim (RHSA-2014:1801)
Updated shim packages that fix three security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...
RedHat Update for shim RHSA-2014:1801-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
shim security update
shim 0.7-8.0.1 - update Oracle Linux certificates Alexey Petrenko - replace securebootca.cer Alexey Petrenko 0.7-8 - out-of-bounds memory read flaw in DHCPv6 packet processing Resolves: CVE-2014-3675 - heap-based buffer overflow flaw in IPv6 address parsing Resolves: CVE-2014-3676 - memory...
Fedora 21 : mokutil-0.2.0-1.fc21 / shim-0.8-1.fc22 / shim-signed-0.8-1.fc22 (2014-13581)
This update fixes CVEs CVE-2014-3675, CVE-2014-3676, and CVE-2014-3677, as well as moving to the 0.8 release, which adds support for Aarch64 and fixes several bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...