SUSE CVE-2026-8863

Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the...

CVE-2026-8863 CVE-2026-8863

Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the...

CVE-2026-8863

CVE-2026-8863 affects multiple Microsoft-signed UEFI SHIM bootloaders and enables bypass of Secure Boot, allowing code execution before the OS loads. Root cause: vulnerable SHIM bootloaders; impact: bypass of Secure Boot and arbitrary code execution at boot. Remediation: block via a specific UEFI...

CVE-2026-8863 CVE-2026-8863

Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the...

CVE-2020-7205

A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot process. Note: This vulnerability is related to using insmod...

EUVD-2002-2181

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414675)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414675 advisory. The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database aka dbx protection mechanism. This affects certs/blacklist.c a...

Malicious code in dbx-js-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2191dabfd9180ad79d00f6678faee7b75417b6a5ee484798bff290a81fa0d56 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-178 Malicious code in dbx-js-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2191dabfd9180ad79d00f6678faee7b75417b6a5ee484798bff290a81fa0d56 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

PC System Recovery Bootloader Vulnerabilities - Lenovo Support US

No description provided...

edk2 security, bug fix, and enhancement update

20230524-3 - edk2-OvmfPkg-AmdSev-fix-BdsPlatform.c-assertion-failure-d.patch bz2190244 - edk2-OvmfPkg-IoMmuDxe-add-locking-to-IoMmuAllocateBounceB.patch bz2211060 - edk2-OvmfPkg-AmdSevDxe-Shim-Reboot-workaround-RHEL-only.patch bz2218196 - Resolves: bz2190244 EDK2 AMDSERVER 9.3 Bug OVMF AP Creatio...

Microsoft Guidance for Addressing Security Feature Bypass in Trend Micro EFI Modules

Trend Micro has released CVE-2023-28005 to address a secure boot bypass. Subsequently Microsoft has released the July Windows security updates to block the vulnerable UEFI modules by using the DBX UEFI Secure Boot Forbidden Signature Database disallow list. To exploit this vulnerability, an...

August 9, 2022—KB5016616 (OS Builds 19042.1889, 19043.1889, and 19044.1889)

August 9, 2022—KB5016616 OS Builds 19042.1889, 19043.1889, and 19044.1889 EXPIRATION NOTICEIMPORTAN T As of 9/12/2023, this KB is only available from Windows Update. It is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to...

August 9, 2022—KB5016627 (OS Build 20348.887)

August 9, 2022—KB5016627 OS Build 20348.887 NEW 8/26/22IMPORTANT Microsoft released KB5012170 on August 9, 2022. It provides support for Secure Boot Forbidden Signature Database DBX. This is a standalone, security update. Windows 8.1 and newer clients and Windows Server 2012 and newer servers mus...

Malicious code in dbx-i18n (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47973d5ed65da3c90ff6a8d35d99063b5d2ad514d36d3c9482537bd1b9e2d5a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2365 Malicious code in dbx-i18n (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47973d5ed65da3c90ff6a8d35d99063b5d2ad514d36d3c9482537bd1b9e2d5a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

USN-5210-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gke, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages. CVE-2021-4002 It was discovered that the Linux kernel did not properly...

Security update for shim (important)

openSUSE Security Update: Security update for shim Announcement ID: openSUSE-SU-2021:0598-1 Rating: important References: 1173411 1174512 1175509 1177315 1177404 1177789 1182057 1184454 Cross-References: CVE-2019-14584 CVSS scores: CVE-2019-14584 SUSE: 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A...

SUSE SLED15 / SLES15 Security Update : shim (SUSE-SU-2020:2629-1)

This update for shim fixes the following issues : This update addresses the 'BootHole' security issue master CVE CVE-2020-10713, by disallowing binaries signed by the previous SUSE UEFI signing key from booting. This update should only be installed after updates of grub2, the Linux kernel and if...

DEBIAN-CVE-2020-26541

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database aka dbx protection mechanism. This affects certs/blacklist.c and certs/systemkeyring.c...