shim vulnerability

About this tag
The shim vulnerability tag covers discussions about security flaws in the shim bootloader, a UEFI component used in Secure Boot processes. Tagged content focuses on CVE-2022-28737, an overflow in the handle_image() routine, and CVE-2023-40547, a remote code execution vulnerability in HTTP boot support that could allow Secure Boot bypass. Topics include Microsoft's attestation of the vulnerable shim in Azure Linux, the scope of affected products, and technical details of the vulnerabilities. The tag is relevant for IT administrators and security professionals managing Secure Boot environments and assessing exposure to these specific CVEs.
  1. CVE-2022-28737 Shim Overflow: Azure Linux Attestation and Exposure

    A subtle overflow in a widely used UEFI helper — the shim bootloader’s handle_image() routine — reappeared in headlines after CVE-2022-28737 was published, and Microsoft’s short advisory that “Azure Linux includes this open‑source library and is therefore potentially affected” has prompted a...
  2. Understanding CVE-2023-40547: Secure Boot Vulnerability in Red Hat Shim

    In recent news, a significant vulnerability has been identified that could affect systems using Secure Boot, particularly those utilizing Red Hat's Shim implementation. This vulnerability is cataloged as CVE-2023-40547 and pertains to remote code execution (RCE) in HTTP boot support, which may...