proxmox-mirrors/pve-edk2-firmware
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-edk2-firmware synced 2025-08-25 15:02:47 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
stable-7
pve-edk2-firmware/debian/patches
History
Fabian Grünbichler b82f91d3ec fix CVE-2023-48733: disable EFI shell in SB mode 
since the shell allows circumvention of Secure Boot restrictions, for example
via raw memory access or execution of scripts on the ESP.

see Links in the patch for details.

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
(cherry picked from commit 334229c409)
2024-02-15 14:36:17 +01:00
..
0001-OvmfPkg-PlatformInitLib-limit-phys-bits-to-46.patch fix line endings of phys-bits patch 2023-06-06 16:24:32 +02:00
brotlicompress-disable.diff debian: update build and packaging from Debian upstream 2021-10-05 14:11:09 +02:00
CVE-2023-45229_45237.patch cherry-pick patches for PXE CVEs 2024-01-22 12:45:42 +01:00
CVE-2023-48733-Disable-the-Shell-when-SecureBoot-is-enabled.patch fix CVE-2023-48733: disable EFI shell in SB mode 2024-02-15 14:36:17 +01:00
no-stack-protector-all-archs.diff refresh patches 2023-05-24 10:07:31 +02:00
Revert-ArmVirtPkg-make-EFI_LOADER_DATA-non-executabl.patch fix #4696: Revert "ArmVirtPkg: make EFI_LOADER_DATA non-executable" 2023-05-24 10:56:07 +02:00
series fix CVE-2023-48733: disable EFI shell in SB mode 2024-02-15 14:36:17 +01:00
x64-baseline-abi.patch refresh patches 2023-05-24 10:07:31 +02:00