CVE-2023-40549

EUVD-2023-45120
An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.2 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
Affected Products (NVD)
VendorProductVersion
redhatshim
𝑥
< 15.8
redhatenterprise_linux
8.0
redhatenterprise_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
shim
bookworm
15.8-1~deb12u1
fixed
bullseye
15.8-1~deb11u1
fixed
sid
15.8-1
fixed
trixie
15.8-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
secureboot-db
bionic
not-affected
focal
not-affected
jammy
not-affected
lunar
ignored
mantic
not-affected
noble
not-affected
oracular
not-affected
trusty
not-affected
xenial
not-affected
shim
bionic
needs-triage
focal
needed
jammy
needed
lunar
ignored
mantic
ignored
noble
Fixed 15.8-0ubuntu1
released
oracular
Fixed 15.8-0ubuntu1
released
trusty
ignored
xenial
ignored
shim-signed
bionic
needs-triage
focal
needed
jammy
needed
lunar
ignored
mantic
ignored
noble
Fixed 1.58
released
oracular
Fixed 1.58
released
trusty
ignored
xenial
ignored
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
mokutil
RHEL 7
0:15.8-1.el7
fixed
shim-aa64
RHEL 8
0:15.8-4.el8_9
fixed
RHEL 8.6 AUS
0:15.8-2.el8_6
fixed
RHEL 8.6 E4S
0:15.8-2.el8_6
fixed
RHEL 8.6 EUS
0:15.8-2.el8_6
fixed
RHEL 8.6 TUS
0:15.8-2.el8_6
fixed
RHEL 9
0:15.8-4.el9_3
fixed
shim-ia32
RHEL 7
0:15.8-1.el7
fixed
RHEL 8
0:15.8-4.el8_9
fixed
RHEL 8.2 AUS
0:15.8-2.el8_2
fixed
RHEL 8.2 E4S
0:15.8-2.el8_2
fixed
RHEL 8.2 TUS
0:15.8-2.el8_2
fixed
RHEL 8.4 AUS
0:15.8-2.el8_4
fixed
RHEL 8.4 E4S
0:15.8-2.el8_4
fixed
RHEL 8.4 TUS
0:15.8-2.el8_4
fixed
RHEL 8.6 AUS
0:15.8-2.el8_6
fixed
RHEL 8.6 E4S
0:15.8-2.el8_6
fixed
RHEL 8.6 EUS
0:15.8-2.el8_6
fixed
RHEL 8.6 TUS
0:15.8-2.el8_6
fixed
shim-unsigned-ia32
RHEL 7
0:15.8-3.el7
fixed
shim-unsigned-x64
RHEL 7
0:15.8-3.el7
fixed
shim-x64
RHEL 7
0:15.8-1.el7
fixed
RHEL 8
0:15.8-4.el8_9
fixed
RHEL 8.2 AUS
0:15.8-2.el8_2
fixed
RHEL 8.2 E4S
0:15.8-2.el8_2
fixed
RHEL 8.2 TUS
0:15.8-2.el8_2
fixed
RHEL 8.4 AUS
0:15.8-2.el8_4
fixed
RHEL 8.4 E4S
0:15.8-2.el8_4
fixed
RHEL 8.4 TUS
0:15.8-2.el8_4
fixed
RHEL 8.6 AUS
0:15.8-2.el8_6
fixed
RHEL 8.6 E4S
0:15.8-2.el8_6
fixed
RHEL 8.6 EUS
0:15.8-2.el8_6
fixed
RHEL 8.6 TUS
0:15.8-2.el8_6
fixed
RHEL 9
0:15.8-4.el9_3
fixed
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHSA-2024:1834
https://access.redhat.com/errata/RHSA-2024:1835
https://access.redhat.com/errata/RHSA-2024:1873
https://access.redhat.com/errata/RHSA-2024:1876
https://access.redhat.com/errata/RHSA-2024:1883
https://access.redhat.com/errata/RHSA-2024:1902
https://access.redhat.com/errata/RHSA-2024:1903
https://access.redhat.com/errata/RHSA-2024:1959
https://access.redhat.com/errata/RHSA-2024:2086
https://access.redhat.com/security/cve/CVE-2023-40549
https://bugzilla.redhat.com/show_bug.cgi?id=2241797
https://access.redhat.com/errata/RHSA-2024:1834
https://access.redhat.com/errata/RHSA-2024:1835
https://access.redhat.com/errata/RHSA-2024:1873
https://access.redhat.com/errata/RHSA-2024:1876
https://access.redhat.com/errata/RHSA-2024:1883
https://access.redhat.com/errata/RHSA-2024:1902
https://access.redhat.com/errata/RHSA-2024:1903
https://access.redhat.com/errata/RHSA-2024:1959
https://access.redhat.com/errata/RHSA-2024:2086
https://access.redhat.com/security/cve/CVE-2023-40549
https://bugzilla.redhat.com/show_bug.cgi?id=2241797
https://lists.debian.org/debian-lts-announce/2024/05/msg00009.html