Issues Updating Secure Boot Firmware From 2011 to 2024

reahcsa · May 22, 2025, 5:08am

I am having issues with updating the Secure Boot Firmware from 2011 to 2024. Every time that I attempt to download and install the update from the Software Store, it returns an error (see enclosed screenshots). I have also tried running the following commands via terminal to no avail:

sudo apt update
&& sudo apt install fwupd
&& fwupdmgr refresh --force
&& fwupdmgr get-updates
&& fwupdmgr update

-AND-

fwupdmgr refresh --force
&& fwupdmgr get-updates
&& fwupdmgr update

Any help would be appreciated.

swarfendor437 · May 22, 2025, 6:45am

Interesting thread here on the issue:

Ponce-De-Leon · May 22, 2025, 8:51am

Maybe You could do a BIOS Update and that could update Secure Boot, too. Or: You simply turn off Secure Boot if not really needed.

reahcsa · May 23, 2025, 5:59am

sudo fwupdmgr get-devices

produces the following error for UEFI Signature Database:

Update Error: Snapd integration for DBX update is not available

(see enclosed screenshot)

Dexxa · May 23, 2025, 9:00am

Is Secure Boot enabled or disabled?
If Secure Boot is disabled, it is useless anyway whether the dbx - which is the subject of the dbx update - is up to date or not. Because without Secure Boot, it is not used for booting at all.

I finally uninstalled fwupd:
sudo apt-get remove fwupd
and be done with it - if you don't need it all the time (or ever)
Since my hardware no longer receives company updates, I no longer need this service.

reahcsa · May 23, 2025, 5:21pm

[SOLVED] The issue has to do with Zorin OS 17.3 which is not supported by Snap version of Fwupd. I ran:

sudo apt update
&& fwupdmgr refresh --force
&& fwupdmgr get-updates
&& fwupdmgr update

in my other OS (Linux Mint Mate 22.1) and it updated UEFI dbx to the current (20241101) version.

This issue needs to be addressed by the Zorin Development Team.

Ponce-De-Leon · May 24, 2025, 9:56am

But Linux Mint doesn't have Snap installed, Zorin has by default.

AhavaLeaf · June 12, 2025, 4:39am

the error persists even after doing other persons solution.

AhavaLeaf · June 12, 2025, 4:42am

also when secure boot is enabled on my machine

littlekun · June 12, 2025, 4:44am

Since the OP has shared the issue has something to do with snapd, I will suggest removing snap from the system completely and then follow the shared commands.

Aravisian · June 12, 2025, 5:00am

Or the specific package, if the user has many Snaps installed and does not want to reinstall them all:

sudo snap remove fwupd

Install the .deb package:

sudo apt install --reinstall fwupd

StarTreker · June 12, 2025, 10:00pm

I would just disable secure boot, its a for Windows only feature, cause Windows is open like a locker room without a door on it. Linux is so secure by itself, Secure Boot does more harm then good on Linux.

d

AhavaLeaf · June 12, 2025, 11:12pm

I obviously already have thanks to no effect.