exposing the EFI shell in Secure Boot mode can lead to security bypass
Bug #2040137 reported by
Mate Kukri
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
edk2 (Ubuntu) |
Fix Released
|
Undecided
|
dann frazier | ||
Focal |
Fix Released
|
Undecided
|
dann frazier | ||
Jammy |
Fix Released
|
Undecided
|
dann frazier | ||
Mantic |
Fix Released
|
Undecided
|
dann frazier | ||
Noble |
Fix Released
|
Undecided
|
dann frazier | ||
lxd (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Focal |
New
|
Undecided
|
Unassigned | ||
Jammy |
New
|
Undecided
|
Unassigned | ||
Mantic |
Won't Fix
|
Undecided
|
Unassigned | ||
Noble |
New
|
Undecided
|
Unassigned |
Bug Description
The EFI shell is available as a built-in Boot Option in Ubuntu's OVMF builds, even when Secure Boot is enabled.
This application has known mechanisms for bypassing UEFI Secure Boot, and has already been barred from signing previously.
It should either: not be built into Secure Boot capable OVMF builds, or disabled when Secure Boot is enabled in any capacity.
Changed in edk2 (Ubuntu Noble): | |
assignee: | nobody → dann frazier (dannf) |
status: | New → In Progress |
Changed in edk2 (Ubuntu Mantic): | |
assignee: | nobody → dann frazier (dannf) |
status: | New → In Progress |
Changed in edk2 (Ubuntu Jammy): | |
assignee: | nobody → dann frazier (dannf) |
status: | New → In Progress |
Changed in edk2 (Ubuntu Focal): | |
assignee: | nobody → dann frazier (dannf) |
status: | New → In Progress |
information type: | Private Security → Public Security |
Changed in lxd (Ubuntu Mantic): | |
status: | New → Won't Fix |
To post a comment you must log in.
This vulnerability affects both edk2 and LXD.
I will add future subscribers to this bug to https:/ /bugs.launchpad .net/ubuntu/ +source/ lxd/+bug/ 2040139