[Bug 2043907] Re: Memtest gives "bad shim signature" error

[Fantu]

Exactly, signature for secureboot support "out of the box" is actually missed.
No ETA on this, that seems a steady progress: https://github.com/rhboot/shim-review/issues/314
disabling it temporarily for the sole execution of memtest does not pose a risk, the risk is if you run something infected and affects the bootloader within Windows or Linux systems (much rarer, but there is malware for it too). 
another note: secureboot mitigates these problems but does not avoid them because unfortunately there are also malware that manage to act on the boot even with secureboot active (through vulnerabilities or valid keys)

** Bug watch added: github.com/rhboot/shim-review/issues #314
   https://github.com/rhboot/shim-review/issues/314

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to memtest86+ in Ubuntu.
https://bugs.launchpad.net/bugs/2043907

Title:
  Memtest gives "bad shim signature" error

Status in memtest86+ package in Ubuntu:
  New

Bug description:
  when you select memtest from the Grub menu with Secure boot enable you
  get the error of "Bad Shim Signature" I should not need to disable
  secure boot just to run this test, which then opens up the system for
  other security issues...

  ProblemType: Bug
  DistroRelease: Ubuntu 23.10
  Package: memtest86+ 6.20-3
  ProcVersionSignature: Ubuntu 6.2.0-36.37-generic 6.2.16
  Uname: Linux 6.2.0-36-generic x86_64
  ApportVersion: 2.27.0-0ubuntu5
  Architecture: amd64
  CasperMD5CheckResult: pass
  CurrentDesktop: KDE
  Date: Sat Nov 18 17:30:24 2023
  InstallationDate: Installed on 2023-10-22 (28 days ago)
  InstallationMedia: Kubuntu 23.04 "Lunar Lobster" - Release amd64 (20230414.1)
  SourcePackage: memtest86+
  UpgradeStatus: Upgraded to mantic on 2023-11-18 (1 days ago)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/memtest86+/+bug/2043907/+subscriptions