Boothole GRUB2 bug breaks Secure Boot on Linux and Windows – Security

A safety vendor has learned a way to execute arbitrary code all through the personal computer boot-up course of action through a fairly uncomplicated to exploit bug and devise assaults that can get through the Unified Extensible Firmware Interface (UEFI) Secure Boot function to supply whole process obtain for malware.

Enterprise safety vendor Eclypsium discovered that the grub.cfg text file for the Grand Unified Bootloader two (GRUB2), which is utilised by Linux distributions considering that 2009, can be altered to bring about a buffer overflow.

By growing the dimensions of a token in grub.cfg, it is achievable for attackers to

Read More Read More