Bugs fixes in "shim"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2023-40549 | An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an atta | 2024-08-26 |
| CVE | CVE-2023-40548 | A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed | 2024-08-26 |
| CVE | CVE-2023-40547 | A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This | 2024-08-26 |
| CVE | CVE-2023-40546 | A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an err | 2024-08-26 |
| CVE | CVE-2023-40551 | A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during t | 2024-08-19 |
| CVE | CVE-2023-40550 | An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's | 2024-08-19 |
| CVE | CVE-2023-40549 | An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an atta | 2024-08-19 |
| CVE | CVE-2023-40548 | A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed | 2024-08-19 |
| CVE | CVE-2023-40547 | A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This | 2024-08-19 |
| CVE | CVE-2023-40546 | A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an err | 2024-08-19 |
| CVE | CVE-2023-40551 | A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during t | 2024-08-19 |
| CVE | CVE-2023-40550 | An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's | 2024-08-19 |
| CVE | CVE-2023-40549 | An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an atta | 2024-08-19 |
| CVE | CVE-2023-40548 | A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed | 2024-08-19 |
| CVE | CVE-2023-40547 | A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This | 2024-08-19 |
| CVE | CVE-2023-40546 | A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an err | 2024-08-19 |
| CVE | CVE-2022-28737 | There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into acc | 2023-09-07 |
| Launchpad | 1987541 | shim executes GRUB w/ dirty instruction cache on arm64 | 2023-09-07 |
| Launchpad | 1995852 | shim TDX enablement | 2023-09-07 |
| Launchpad | 1996503 | shim 15.7-0ubuntu1 | 2023-09-07 |
About
-
Send Feedback to @ubuntu_updates
