Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE 11: SUSE-SU-2020:14490-1 Moderate: Shim Boot Issue Fix

suse
Calendar Grey September 15, 2020
Dist Suse Esm H88
SUSE has issued a security update addressing the 'BootHole' vulnerability linked to the shim installation process, offering crucial fixes and installation guidance
An update that solves one vulnerability and has two fixes is now available

Summary

This update for shim fixes the following issues: Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994) This update addresses the "BootHole" security issue (master CVE CVE-2020-10713), by disallowing binaries signed by the previous SUSE UEFI signing key from booting. This update should only be installed after updates of grub2, the Linux kernel and (if used) Xen from or after July / August 2020 are applied. Also fixed: + shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS:

Topics%20covered

Topics Covered

security advisory moderate update SUSE Linux server boot issue shim

References

#1168994 #1175626 #1175656

Cross- CVE-2020-10713

Affected Products:

SUSE Linux Enterprise Server 11-SP4-LTSS

https://www.suse.com/security/cve/CVE-2020-10713.html

https://bugzilla.suse.com/1168994

https://bugzilla.suse.com/1175626

https://bugzilla.suse.com/1175656

Announcement ID: SUSE-SU-2020:14490-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update SUSE Linux server boot issue shim

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here