vulnerability

Red Hat: CVE-2020-26541: CVE-2020-26541 kernel: security bypass in certs/blacklist.c and certs/system_keyring.c (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Oct 2, 2020	Jun 30, 2021	Jul 9, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Oct 2, 2020

Added

Jun 30, 2021

Modified

Jul 9, 2025

Description

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-kernelredhat-upgrade-kernel-rt

References

NVD-CVE-2020-26541
REDHAT-RHSA-2021:2570
REDHAT-RHSA-2021:2599
REDHAT-RHSA-2021:2666
REDHAT-RHSA-2021:2718
REDHAT-RHSA-2021:2719

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today