Dual-booting/triple-booting FreeBSD under UEFI
Ralf Mardorf
ralf-mardorf at riseup.net
Sun Sep 20 02:24:15 UTC 2020
PS:
"Anyway, look for CVE-2020-10713 patches in future changelogs." -
https://www.zdnet.com/article/boothole-attack-impacts-windows-and-linux-systems-using-grub2-and-secure-boot/
Probably the most user-friendly and likely less security hardened Linux
distro provides this information:
"Jesse Michael and Mickey Shkatov discovered that the configuration
parser in GRUB2 did not properly exit when errors were discovered,
resulting in heap-based buffer overflows. A local attacker could use
this to execute arbitrary code and bypass UEFI Secure Boot
restrictions. (CVE-2020-10713)
[snip]
The problem can be corrected by updating your system to the following
package versions:" - https://ubuntu.com/security/notices/USN-4432-1
No need to read a changelog or security notices in the first place,
this issue is fixed (most likely not only for Ubuntu ;).
More information about the freebsd-questions
mailing list