Summary: | sys-boot/shim: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Christopher Fore <csfore> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | CONFIRMED --- | ||
Severity: | normal | CC: | ajak, zerochaos |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/rhboot/shim/releases/tag/15.8 | ||
See Also: | https://github.com/gentoo/gentoo/pull/35949 | ||
Whiteboard: | B2 [stable?] | ||
Package list: | Runtime testing required: | --- |
Description
Christopher Fore
2024-01-25 23:54:50 UTC
CVE-2023-40547 (https://github.com/rhboot/shim/commit/0226b56513b2b8bd5fd281bce77c40c9bf07c66d): A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete system compromise. The above is also fixed in 15.8 Currently waiting for upstream (Fedora) to publish a release before we can update our ebuild. https://bugzilla.redhat.com/show_bug.cgi?id=2259914 The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=504e3442d89171f17e94bbc63cb80b6a80c047cf commit 504e3442d89171f17e94bbc63cb80b6a80c047cf Author: Christopher Fore <csfore@posteo.net> AuthorDate: 2024-03-27 20:04:38 +0000 Commit: Rick Farina <zerochaos@gentoo.org> CommitDate: 2024-03-28 00:41:56 +0000 sys-boot/shim: add 15.8, security bump Also fixes some QA warnings (moves S up) Bug: https://bugs.gentoo.org/922931 Closes: https://github.com/gentoo/gentoo/pull/35949 Signed-off-by: Christopher Fore <csfore@posteo.net> Signed-off-by: Rick Farina <zerochaos@gentoo.org> sys-boot/shim/Manifest | 3 +++ sys-boot/shim/shim-15.6.ebuild | 5 ++--- sys-boot/shim/shim-15.8.ebuild | 29 +++++++++++++++++++++++++++++ 3 files changed, 34 insertions(+), 3 deletions(-) |