RHSA-2021:3675MediumCVSS 7.6

Red Hat Security Advisory: shim and fwupd security update

Published
September 28, 2021
Last Modified
June 26, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2020-14372 — grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled CVE-2020-25632 — grub2: Use-after-free in rmmod command CVE-2020-25647 — grub2: Out-of-bounds write in grub_usb_device_initialize() CVE-2020-27749 — grub2: Stack buffer overflow in grub_parser_split_cmdline() CVE-2020-27779 — grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled CVE-2021-20225 — grub2: Heap out-of-bounds write in short form option parser CVE-2021-20233 — grub2: Heap out-of-bounds write due to miscalculation of space required for quoting

🔗 References (11)