pve-edk2-firmware

proxmox-mirrors/pve-edk2-firmware

Fork 0

mirror of https://git.proxmox.com/git/pve-edk2-firmware synced 2025-08-26 06:17:19 +00:00

Commit Graph

Author SHA1 Message Date

Author	SHA1	Message	Date
Fabian Grünbichler	b82f91d3ec	fix CVE-2023-48733: disable EFI shell in SB mode since the shell allows circumvention of Secure Boot restrictions, for example via raw memory access or execution of scripts on the ESP. see Links in the patch for details. Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com> (cherry picked from commit `334229c409`)	2024-02-15 14:36:17 +01:00

Fabian Grünbichler

b82f91d3ec

fix CVE-2023-48733: disable EFI shell in SB mode

since the shell allows circumvention of Secure Boot restrictions, for example
via raw memory access or execution of scripts on the ESP.

see Links in the patch for details.

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
(cherry picked from commit 334229c409)

2024-02-15 14:36:17 +01:00

1 Commits