3 matches found
GHSA-XRV8-2PF5-F3Q7 nitro-tpm-pcr-compute may allow kernel command line modification by an account operator
Summary Adding default PCR12 validation to ensure that account operators can not modify kernel command line parameters, potentially bypassing root filesystem integrity validation. Attestable AMIs are based on the systemd Unified Kernel Image UKI concept which uses systemd-boot to create a single...
Amazon Linux 2023 : systemd, systemd-boot-unsigned, systemd-container (ALAS2023-2024-509)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-509 advisory. systemd-resolved accepts records of DNSSEC-signed domains even when they have no signature, allowing man- in-the-middles or the upstream DNS resolver to manipulate records. CVE-2023-7008 Tenable has...
Security fix for the ALT Linux 9 package systemd version 1:243.9-alt1
1:243.9-alt1 built Oct. 6, 2020 Alexey Shabalin in task 258476 Oct. 3, 2020 Alexey Shabalin - 243.9 Fixes: CVE-2020-13776 - kernelinstalldir path /usr/lib/kernel/install.d - /lib/kernel/install.d - install kernel-install script to /sbin - move systemd-boot and bootctl utils to systemd-boot-efi...