Does openssl CVE affect shim?
15058718379 opened this issue · comments
We found that the openssl code involves these CVEs. Does this affect the functionality of the shim?
CVE-2023-0464
CVE-2023-0465
CVE-2023-0466
- CVE-2023-0464 - if you can DoS shim with a malicious certificate in the signing chain, then you can DoS the system by removing the bootloader or any number of other ways.
- CVE-2023-0465 - we don't enable policy processing
- CVE-2023-0466 - we don't enable policy processing