What the vulnerability does
01Description
The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.
CVSS base score
CVSS vector
CVSS:3.1/AC:L/AV:L/A:H/C:H/I:H/PR:H/S:U/UI:R
What the vulnerability does
The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.
Key dates
External resources