HARDWARE

Hardware

1 article

There's no patch for Secure Boot's signed-binary problem — only a revocation the ecosystem can't push
HARDWARE

There's no patch for Secure Boot's signed-binary problem — only a revocation the ecosystem can't push

CERT/CC's VU#457458 has no CVE and no patch, because the vulnerable UEFI binaries work exactly as designed. The only fix is withdrawing trust across every machine's DBX — and that's the part the industry keeps failing at.

Jun 18