As the title says. CVE-2022-21894 and CVE-2023-24932 (black lotus) is currently affecting Windows UEFI, but from what I can read Linux could also be vulnerable if not updating the dbx database.
Both RedHat and SUSE have provided the following information on using fwupd to mitigate the vulnerabilities:
https://www.suse.com/support/kb/doc/?id=000021066
https://access.redhat.com/security/blacklotus_uefi_bootkit
However, I can't find any information on how to mitigate this on Ubuntu.
I'm not 100% if a fix is really needed on Linux machines. I'm not sure if the machine already need to be infected with some kind of malware for black lotus to be effective on Linux. But since these are machines in a work environment I would like to secure them as much as possible.