[Bug 2051151] Re: Update to shim 15.8

[Mate Kukri]

** Description changed:

- We should update shim and shim-signed to 15.8, this version addresses
- multiple security issues.
+ [Impact]
+ 
+ shim 15.7 is affected by multiple CVEs, including a critical severity
+ one allowing Secure Boot bypass when netbooting.
+ 
+ [Test Plan]
+ 
+ Make sure the system is bootable both from disk and network with the new
+ shim on each affected series
+ 
+ [Where problems could occur]
+ 
+ Boot regressions are always possible when updating such a critical
+ component.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to shim-signed in Ubuntu.
https://bugs.launchpad.net/bugs/2051151

Title:
  Update to shim 15.8

Status in shim package in Ubuntu:
  Fix Released
Status in shim-signed package in Ubuntu:
  Fix Released
Status in shim source package in Focal:
  New
Status in shim-signed source package in Focal:
  New
Status in shim source package in Jammy:
  New
Status in shim-signed source package in Jammy:
  New
Status in shim source package in Mantic:
  New
Status in shim-signed source package in Mantic:
  New
Status in shim source package in Noble:
  Fix Released
Status in shim-signed source package in Noble:
  Fix Released
Status in shim package in Debian:
  New

Bug description:
  [Impact]

  shim 15.7 is affected by multiple CVEs, including a critical severity
  one allowing Secure Boot bypass when netbooting.

  [Test Plan]

  Make sure the system is bootable both from disk and network with the
  new shim on each affected series

  [Where problems could occur]

  Boot regressions are always possible when updating such a critical
  component.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/shim/+bug/2051151/+subscriptions