diff options
| author | Jan Setje-Eilers <jan.setjeeilers@oracle.com> | 2024-12-20 18:47:17 -0800 |
|---|---|---|
| committer | Peter Jones <pjones@redhat.com> | 2025-02-05 09:10:35 -0500 |
| commit | eeca60ad059569801b5377c29a30de5b2c4c594b (patch) | |
| tree | 950fb1301b11763ca07f42e1ecccb53e2754edee | |
| parent | 2daf1db9aa27e5d03335bc75818bd8a03e4b84e2 (diff) | |
| download | efi-boot-shim-eeca60ad059569801b5377c29a30de5b2c4c594b.tar.gz efi-boot-shim-eeca60ad059569801b5377c29a30de5b2c4c594b.zip | |
Update SbatLevel_Variable.txt with peimage CVE-2024-2312 revocation
Add revocations for
- January 2024 shim CVEs
- October 2023 grub CVEs
- Debian/Ubuntu (peimage) CVE-2024-2312
to SbatLevel_Variable.txt. This was missed when they were commited
to include/sbat_var_defs.h
Signed-off-by: Jan Setje-Eilers <Jan.SetjeEilers@oracle.com>
| -rw-r--r-- | SbatLevel_Variable.txt | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/SbatLevel_Variable.txt b/SbatLevel_Variable.txt index 42a388e4..0c61f306 100644 --- a/SbatLevel_Variable.txt +++ b/SbatLevel_Variable.txt @@ -97,6 +97,18 @@ shim,4 grub,3 grub.debian,4 + +Revocations for: + - January 2024 shim CVEs + - October 2023 grub CVEs + - Debian/Ubuntu (peimage) CVE-2024-2312 + +sbat,1,2024040900 +shim,4 +grub,4 +grub.peimage,2 + + Since http boot shim CVE is considerably more serious than then GRUB ntfs CVEs shim is delivering the shim revocation without the updated GRUB revocation as a latest payload. |