Dual-booting/triple-booting FreeBSD under UEFI

Ralf Mardorf ralf-mardorf at riseup.net
Sun Sep 20 02:24:15 UTC 2020


"Anyway, look for CVE-2020-10713 patches in future changelogs." -

Probably the most user-friendly and likely less security hardened Linux
distro provides this information:

"Jesse Michael and Mickey Shkatov discovered that the configuration
parser in GRUB2 did not properly exit when errors were discovered,
resulting in heap-based buffer overflows. A local attacker could use
this to execute arbitrary code and bypass UEFI Secure Boot
restrictions. (CVE-2020-10713)


The problem can be corrected by updating your system to the following
package versions:" - https://ubuntu.com/security/notices/USN-4432-1

No need to read a changelog or security notices in the first place,
this issue is fixed (most likely not only for Ubuntu ;).

More information about the freebsd-questions mailing list