How to update the Secure Boot Forbidden Signature Database (DBX) with the latest UEFI Revocation List file

Solution Verified - Updated -

Issue

  • In order to prevent potential attacks through downgrading binaries involved in the boot process, I want to update the Secure Boot Forbidden Signature Database (DBX) with the latest UEFI Revocation List file

Environment

  • Red Hat Enterprise Linux (RHEL)
    • Secure Boot

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In