Updated: 2024-11-30 04:18:03.358417
Description:
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0 | |
| CVSS Version 3.x | MEDIUM | 5.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| AlmaLinux 9.2 ESU | shim | 15 | 5.5 | MEDIUM | Already Fixed | 2025-04-17 03:53:39 | ||
| CentOS 7 ELS | shim | 15 | 5.5 | MEDIUM | Released | CLSA-2024:1721204645 | 2024-08-20 12:23:54 | |
| CentOS 8.4 ELS | shim | 15-15 | 5.5 | MEDIUM | Released | CLSA-2024:1711036007 | 2024-03-21 14:09:54 | |
| CentOS 8.5 ELS | shim | 15-15 | 5.5 | MEDIUM | Released | CLSA-2024:1711036383 | 2024-03-21 14:09:53 | |
| CentOS Stream 8 ELS | shim | 15 | 5.5 | MEDIUM | Released | CLSA-2024:1724271309 | 2024-08-21 17:34:12 |