Intel has released a crucial fix for Intel Core hybrid systems with faulty firmware that addresses a performance impact issue. The fix, integrated into the Linux power management subsystem updates, aims to resolve up to a 50% decrease in performance seen on affected Intel hybrid platforms when using existing Linux kernel versions. The problem was … Read more
The NVIDIA 555.58 driver for Linux has been released as the first stable version of the R555 driver series. This driver offers explicit Wayland sync support, improved Wayland stability, and GSP firmware used by default on newer GPUs with a GPU system processor. The driver entered beta last month and a stable version has now … Read more
Google recently issued a warning about a critical security flaw affecting Google Pixel Firmware, known as CVE-2024-32896. This vulnerability allows attackers to gain unauthorized access to devices by elevating their privileges, bypassing security protocols. The flaw is actively exploited in targeted attacks, prompting Google to release a security update for Pixel devices in June 2024, … Read more
Eclypsium’s automated binary analysis system, Automata, has uncovered a significant vulnerability in the Phoenix SecureCore UEFI firmware used on various Intel Core processor families, including AlderLake, CoffeeLake, CometLake, IceLake, JasperLake, KabyLake, MeteorLake, RaptorLake, RocketLake, and TigerLake. This vulnerability, identified as CVE-2024-0762 with a CVSS score of 7.5, involves an unsafe variable in the Trusted Platform … Read more
A new vulnerability has been discovered in Intel-based devices, including those using the latest Raptor Lake platform, that could allow attackers to gain unauthorized access to PCs through UEFI firmware. The flaw, known as CVE-2024-0762, was identified by cybersecurity firm Eclypsium in the Phoenix SecureCore UEFI firmware on Lenovo ThinkPad X1 Carbon 7th Generation and … Read more
Cybersecurity firm Eclypsium has uncovered significant security vulnerabilities in the Phoenix SecureCore UEFI firmware used by various Intel CPU and motherboard vendors across different generations. These vulnerabilities, dubbed “UEFIcanhazbufferoverflow,” are due to an insecure call to the UEFI service “GetVariable,” which could lead to a stack buffer overflow and allow malicious code execution. This kind … Read more
A significant firmware vulnerability has been discovered in Intel-powered PCs worldwide, posing a serious security risk. This flaw affects a range of devices and has the potential to be exploited by cyber attackers to compromise users’ data and privacy. The vulnerability stems from a flaw in the firmware of Intel processors and could allow attackers … Read more
A vulnerability (CVE-2024-0762) in Phoenix SecureCore UEFI running on multiple Intel processors has been identified by Eclypsium researchers. This vulnerability could allow for local exploitation to escalate privileges and execute arbitrary code within the firmware during runtime. The researchers pointed out that this type of low-level exploitation is typical of firmware backdoors found in the … Read more
Security experts have identified a new vulnerability in Intel CPUs that could allow threat actors to execute malicious code on affected devices remotely. The vulnerability, known as CVE-2024-0762, is a buffer overflow bug found in the Phoenix SecureCore UEFI firmware. This bug affects various Intel CPUs, including Alder Lake, Coffee Lake, Comet Lake, Ice Lake, … Read more
A recent study by Eclypsium has revealed a vulnerability in the Phoenix SecureCore UEFI firmware that affects various Intel processors and hundreds of computer models. This flaw, known as CVE-2024-0762 or “UEFIcanhazbufferoverflow,” has been assigned a CVSS score of 7.5 and involves an unsafe variable in the Trusted Platform Module (TPM) configuration that could potentially … Read more