Описание
A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| edk2 | fixed | 2021.11-1 | package | |
| edk2 | no-dsa | buster | package |
Примечания
https://bugzilla.tianocore.org/show_bug.cgi?id=3499
Fixed by https://github.com/tianocore/edk2/pull/1968
Связанные уязвимости
A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.
A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.
A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.
Уязвимость библиотеки Tianocore edk2, связанная с ошибками при освобождении ресурсов, позволяющая нарушителю вызвать отказ в обслуживании