Nixpkgs Security Tracker

Untriaged

Permalink CVE-2023-5342

created 4 months, 3 weeks ago

Shim: expired secure boot certificate

The Fedora Secure Boot CA certificate shipped with shim in Fedora was expired which could lead to old or invalid signed boot components being loaded.

Affected products

shim

shim-x64

<15.8-2

Matching in nixpkgs

pkgs.yoshimi

High quality software synthesizer based on ZynAddSubFX

nixos-unstable -
- nixpkgs-unstable 2.3.4.1

pkgs.epoll-shim

Small epoll implementation using kqueue

nixos-unstable -
- nixpkgs-unstable 0.0.20240608

pkgs.libudev0-shim

Shim to preserve libudev.so.0 compatibility

nixos-unstable -
- nixpkgs-unstable 1

pkgs.plex-mpv-shim

Allows casting of videos to MPV via the Plex mobile and web app

nixos-unstable -
- nixpkgs-unstable 1.11.0

pkgs.shim-unsigned

UEFI shim loader

nixos-unstable -
- nixpkgs-unstable 16.1

pkgs.doas-sudo-shim

Shim for the sudo command that utilizes doas

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.rshim-user-space

User-space rshim driver for the BlueField SoC

nixos-unstable -
- nixpkgs-unstable 2.4.4

pkgs.jellyfin-mpv-shim

Allows casting of videos to MPV via the jellyfin mobile and web app

nixos-unstable -
- nixpkgs-unstable 2.9.0

pkgs.mpv-shim-default-shaders

Preconfigured set of MPV shaders and configurations for MPV Shim media clients

nixos-unstable -
- nixpkgs-unstable 2.1.0

pkgs.python312Packages.shimmy

API conversion tool for popular external reinforcement learning environments

nixos-unstable -
- nixpkgs-unstable 2.0.0

pkgs.pantheon.elementary-print-shim

Simple shim for printing support via Contractor

nixos-unstable -
- nixpkgs-unstable 0.1.3

pkgs.python312Packages.notebook-shim

Switch frontends to Jupyter Server

nixos-unstable -
- nixpkgs-unstable 0.2.4

pkgs.python313Packages.notebook-shim