boot fails with with 'Verification failed: (0x1A) Security Violation'
This document (000021080) is provided subject to the disclaimer at the end of this document.
Environment
Situation
Resolution
The "SLE-15-SP4-Full-x86_64-QU3-Media1.iso" is available for download in the SUSE Customer Center (Products, Installation Media)
Cause
Shim version 15.7 or later blocks grub versions which have their .sbat section set to 1.
The scenario may occur when a security vulnerability is discovered.
For more information, please refer to UEFI shim bootloader secure boot life-cycle improvements [https://github.com/rhboot/shim/blob/main/SBAT.md ]
Disclaimer
This Support Knowledgebase provides a valuable tool for SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.
- Document ID:000021080
- Creation Date: 19-May-2023
- Modified Date:19-May-2023
-
- SUSE Linux Enterprise Server
For questions or concerns with the SUSE Knowledgebase please contact: tidfeedback[at]suse.com