CVE-2014-3675

Name of the Vulnerable Software and Affected Versions shim versions 0.7 shim-debuginfo versions 0.7 shim-unsigned versions 0.7 shim-signed versions 0.7 mokutil version 0.7

Description The issue affects the shim package in Red Hat Enterprise Linux, allowing remote attackers to cause a denial of service via a crafted DHCPv6 packet. Exploitation of the vulnerabilities can lead to disruption of confidentiality, integrity, and availability of protected information. The vulnerabilities can be exploited remotely.

Recommendations For shim versions 0.7, consider disabling the vulnerable component until a patch is available. For shim-debuginfo versions 0.7, restrict access to the vulnerable module to minimize the risk of exploitation. For shim-unsigned versions 0.7, avoid using the vulnerable package until the issue is resolved. For shim-signed versions 0.7, consider applying configuration changes to mitigate the risk of exploitation. For mokutil version 0.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.