CLSA-2024-1711036383

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1711036383.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2024-1711036383
Upstream
Published
2024-03-21T15:53:06Z
Modified
2026-06-01T00:33:22.324571850Z
Summary
shim: Fix of 4 CVEs
Details
  • Make this package installable only on a system having Cloudlinux signed components: grub2 and kernel
  • Update to shim-15.8 and fix the following CVEs: Resolves: CVE-2023-40546 Resolves: CVE-2023-40547 Resolves: СVE-2023-40548 Resolves: СVE-2023-40549 Resolves: CVE-2023-40550 Resolves: CVE-2023-40551
References

Affected packages

TuxCare:CentOS:8.5 / shim-ia32

Package

Name
shim-ia32
Purl
pkg:rpm/tuxcare/shim-ia32?distro=centos-8.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
15.8-1.el8.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1711036383.json"

TuxCare:CentOS:8.5 / shim-x64

Package

Name
shim-x64
Purl
pkg:rpm/tuxcare/shim-x64?distro=centos-8.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
15.8-1.el8.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2024-1711036383.json"