CVE 2023-40548
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw causes memory corruption and can lead to a crash or data integrity issues during the boot phase.
Related bugs and status
CVE-2023-40548 (Candidate) is related to these bugs:
Bug #2036604: Synchronous Exception when booting VMs via qemu-efi-aarch64
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
2036604 | Synchronous Exception when booting VMs via qemu-efi-aarch64 | qemu (Ubuntu) | Undecided | Confirmed | ||
2036604 | Synchronous Exception when booting VMs via qemu-efi-aarch64 | autopkgtest (Ubuntu) | Undecided | Confirmed | ||
2036604 | Synchronous Exception when booting VMs via qemu-efi-aarch64 | cloud-images | Undecided | New | ||
2036604 | Synchronous Exception when booting VMs via qemu-efi-aarch64 | edk2 (Ubuntu) | High | Fix Released | ||
2036604 | Synchronous Exception when booting VMs via qemu-efi-aarch64 | edk2 (Debian) | Unknown | Fix Released | ||
2036604 | Synchronous Exception when booting VMs via qemu-efi-aarch64 | shim (Ubuntu) | Undecided | Fix Released |
Bug #2051151: Update to shim 15.8
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
2051151 | Update to shim 15.8 | shim (Ubuntu) | Undecided | Fix Released | ||
2051151 | Update to shim 15.8 | shim-signed (Ubuntu) | Undecided | Fix Released | ||
2051151 | Update to shim 15.8 | shim (Debian) | Unknown | Fix Released | ||
2051151 | Update to shim 15.8 | shim (Ubuntu Mantic) | Undecided | Won't Fix | ||
2051151 | Update to shim 15.8 | shim-signed (Ubuntu Mantic) | Undecided | Won't Fix | ||
2051151 | Update to shim 15.8 | shim (Ubuntu Focal) | Undecided | Confirmed | ||
2051151 | Update to shim 15.8 | shim-signed (Ubuntu Focal) | Undecided | Confirmed | ||
2051151 | Update to shim 15.8 | shim (Ubuntu Noble) | Undecided | Fix Released | ||
2051151 | Update to shim 15.8 | shim-signed (Ubuntu Noble) | Undecided | Fix Released | ||
2051151 | Update to shim 15.8 | shim (Ubuntu Jammy) | Undecided | Confirmed | ||
2051151 | Update to shim 15.8 | shim-signed (Ubuntu Jammy) | Undecided | Confirmed |
See the
CVE page on Mitre.org
for more details.