this post was submitted on 18 Jan 2025
196 points (99.5% liked)

PC Gaming

9118 readers
750 users here now

For PC gaming news and discussion. PCGamingWiki

Rules:

  1. Be Respectful.
  2. No Spam or Porn.
  3. No Advertising.
  4. No Memes.
  5. No Tech Support.
  6. No questions about buying/building computers.
  7. No game suggestions, friend requests, surveys, or begging.
  8. No Let's Plays, streams, highlight reels/montages, random videos or shorts.
  9. No off-topic posts/comments, within reason.
  10. Use the original source, no clickbait titles, no duplicates. (Submissions should be from the original source if possible, unless from paywalled or non-english sources. If the title is clickbait or lacks context you may lightly edit the title.)

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
196
New UEFI vulnerability bypasses Secure Boot — bootkits stay undetected even after OS re-install (www.tomshardware.com)
submitted 2 weeks ago by [email protected] to c/[email protected]
43 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 9 points 2 weeks ago

As drspod said, no, Linux is not invulnerable. For Linux users using legacy BIOS boot or using UEFI but not secure boot, this vulnerability doesn't make anything any more insecure than it was already. But any user, Linux or Windows, who is affected by this vulnerability (which is basically everyone who hasn't revoked permissions to the Microsoft keys in question), if they're using secure boot, no they're not. (That is to say, they can no longer depend on any of the guarantees that secure boot provides until they close the vulnerability.)