Detections
Analytics

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : shim (SUSE-SU-2026:0741-1)

medium Nessus Plugin ID 300834

Synopsis

The remote SUSE host is missing a security update.

Description

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0741-1 advisory.

 shim is updated to version 16.1:

 - shim_start_image(): fix guid/handle pairing when uninstalling protocols
 - Fix uncompressed ipv6 netboot
 - fix test segfaults caused by uninitialized memory
 - SbatLevel_Variable.txt: minor typo fix.
 - Realloc() needs to allocate one more byte for sprintf()
 - IPv6: Add more check to avoid multiple double colon and illegal char
 - Loader proto v2
 - loader-protocol: add workaround for EDK2 2025.02 page fault on FreePages
 - Generate Authenticode for the entire PE file
 - README: mention new loader protocol and interaction with UKIs
 - shim: change automatically enable MOK_POLICY_REQUIRE_NX
 - Save var info
 - add SbatLevel entry 2025051000 for PSA-2025-00012-1
 - Coverity fixes 20250804
 - fix http boot
 - Fix double free and leak in the loader protocol


 shim is updated to version 16.0:


 - Validate that a supplied vendor cert is not in PEM format
 - sbat: Add grub.peimage,2 to latest (CVE-2024-2312)
 - sbat: Also bump latest for grub,4 (and to todays date)
 - undo change that limits certificate files to a single file
 - shim: don't set second_stage to the empty string
 - Fix SBAT.md for today's consensus about numbers
 - Update Code of Conduct contact address
 - make-certs: Handle missing OpenSSL installation
 - Update MokVars.txt
 - export DEFINES for sub makefile
 - Drop unused EFI_IMAGE_SECURITY_DATABASE_GUID definition
 - Null-terminate 'arguments' in fallback
 - Fix 'Verifiying' typo in error message
 - Update Fedora CI targets
 - Force gcc to produce DWARF4 so that gdb can use it
 - Minor housekeeping 2024121700
 - Discard load-options that start with WINDOWS
 - Fix the issue that the gBS->LoadImage pointer was empty.
 - shim: Allow data after the end of device path node in load options
 - Handle network file not found like disks
 - Update gnu-efi submodule for EFI_HTTP_ERROR
 - Increase EFI file alignment
 - avoid EFIv2 runtime services on Apple x86 machines
 - Improve shortcut performance when comparing two boolean expressions
 - Provide better error message when MokManager is not found
 - tpm: Boot with a warning if the event log is full
 - MokManager: remove redundant logical constraints
 - Test import_mok_state() when MokListRT would be bigger than available size
 - test-mok-mirror: minor bug fix
 - Fix file system browser hang when enrolling MOK from disk
 - Ignore a minor clang-tidy nit
 - Allow fallback to default loader when encountering errors on network boot
 - test.mk: don't use a temporary random.bin
 - pe: Enhance debug report for update_mem_attrs
 - Multiple certificate handling improvements
 - Generate SbatLevel Metadata from SbatLevel_Variable.txt
 - Apply EKU check with compile option
 - Add configuration option to boot an alternative 2nd stage
 - Loader protocol (with Device Path resolution support)
 - netboot cleanup for additional files
 - Document how revocations can be delivered
 - post-process-pe: add tests to validate NX compliance
 - regression: CopyMem() in ad8692e copies out of bounds
 - Save the debug and error logs in mok-variables
 - Add features for the Host Security ID program
 - Mirror some more efi variables to mok-variables
 - This adds DXE Services measurements to HSI and uses them for NX
 - Add shim's current NX_COMPAT status to HSIStatus
 - README.tpm: reflect that vendor_db is in fact logged as 'vendor_db'
 - Reject HTTP message with duplicate Content-Length header fields
 - Disable log saving
 - fallback: don't add new boot order entries backwards
 - README.tpm: Update MokList entry to MokListRT
 - SBAT Level update for February 2025 GRUB CVEs

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected shim package.

See Also

https://bugzilla.suse.com/1240871

https://bugzilla.suse.com/1247432

http://www.nessus.org/u?0afdd8f6

https://www.suse.com/security/cve/CVE-2024-2312

Plugin Details

Severity: Medium

ID: 300834

File Name: suse_SU-2026-0741-1.nasl

Version: 1.1

Type: local

Agent: unix

Published: 3/5/2026

Updated: 3/5/2026

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.1

Vector: CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:C

CVSS Score Source: CVE-2024-2312

CVSS v3

Risk Factor: Medium

Base Score: 6.7

Temporal Score: 6

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:shim, cpe:/o:novell:suse_linux:15

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/2/2026

Vulnerability Publication Date: 4/5/2024

Reference Information

CVE: CVE-2024-2312

SuSE: SUSE-SU-2026:0741-1