The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c. CREATE(Triage):(User=admin) [CVE-2020-26541|https://nvd.nist.gov/vuln/detail/CVE-2020-26541]