* Disable the built-in Shell when SecureBoot is enabled, CVE-2023-48733.
Thanks to Mate Kukri. LP: #2040137.
- Backport support for GetSetupMode() and IsSecureBootEnabled():
+ 0001-SecurityPkg-Create-SecureBootVariableLib.patch
+ 0002-ArmVirtPkg-add-SecureBootVariableLib-class-resolutio.patch
+ 0003-OvmfPkg-add-SecureBootVariableLib-class-resolution.patch
+ 0004-SecurityPkg-SecureBootVariableLib-Added-newly-suppor.patch
+ 0005-EmulatorPkg-add-SecureBootVariableLib-class-resoluti.patch
- Disable the built-in Shell when SecureBoot is enabled:
+ Disable-the-Shell-when-SecureBoot-is-enabled.patch
-- dann frazier <email address hidden> Tue, 13 Feb 2024 17:52:30 -0700
This bug was fixed in the package edk2 - 0~20191122. bd85bf54- 2ubuntu3. 5
--------------- bd85bf54- 2ubuntu3. 5) focal; urgency=medium
edk2 (0~20191122.
* Disable the built-in Shell when SecureBoot is enabled, CVE-2023-48733. bled(): g-Create- SecureBootVaria bleLib. patch -add-SecureBoot VariableLib- class-resolutio .patch add-SecureBootV ariableLib- class-resolutio n.patch g-SecureBootVar iableLib- Added-newly- suppor. patch g-add-SecureBoo tVariableLib- class-resoluti. patch the-Shell- when-SecureBoot -is-enabled. patch
Thanks to Mate Kukri. LP: #2040137.
- Backport support for GetSetupMode() and IsSecureBootEna
+ 0001-SecurityPk
+ 0002-ArmVirtPkg
+ 0003-OvmfPkg-
+ 0004-SecurityPk
+ 0005-EmulatorPk
- Disable the built-in Shell when SecureBoot is enabled:
+ Disable-
-- dann frazier <email address hidden> Tue, 13 Feb 2024 17:52:30 -0700