Will Dormann on Nostr: Microsoft pushed out an SBAT update to protect against CVE-2022-2601 in August. If ...
Microsoft pushed out an SBAT update to protect against CVE-2022-2601 in August.
If you try to boot the current Debian or Ubuntu ISO (12.6.0 and 24.04, respectively) on a system that got Windows August 2024 updates, the system won't boot due to an SBAT security policy violation. ("Verifiying shim SBAT data failed: Security Policy Violation ")
Both Ubuntu
https://ubuntu.com/security/CVE-2022-2601
and Debian
https://security-tracker.debian.org/tracker/CVE-2022-2601
claim to have released fixes for CVE-2022-2601, though. 🤔
Everything SecureBoot seems to be some combination of YOLO and wishful thinking.
If you try to boot the current Debian or Ubuntu ISO (12.6.0 and 24.04, respectively) on a system that got Windows August 2024 updates, the system won't boot due to an SBAT security policy violation. ("Verifiying shim SBAT data failed: Security Policy Violation ")
Both Ubuntu
https://ubuntu.com/security/CVE-2022-2601
and Debian
https://security-tracker.debian.org/tracker/CVE-2022-2601
claim to have released fixes for CVE-2022-2601, though. 🤔
Everything SecureBoot seems to be some combination of YOLO and wishful thinking.