[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

speaking of hardware CVEs



This timely article is out: https://www.cylance.com/en_us/blog/uefi-ransomware-full-disclosure-at-black-hat-asia.html seems like some UEFI implementations are lacking basic security checks/best practices, I would think failing to sue those things should be CVE worthy in the modern world.

--

Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert@redhat.com

Page Last Updated or Reviewed: March 13, 2017