I-LogoFAIL, uchungechunge lobungozi kubahlaziyi bezithombe be-UEFI

Darkcrizt

Imizuzu ye-4

I-LogoFAIL

I-LogoFAIL isethi yobungozi obuthinta amalabhulali okuhlaziya izithombe asetshenziswa ku-UEFI

Ezinsukwini ezimbalwa ezedlule, Abacwaningi be-Binarly bembule, ngeposi lebhulogi, uchungechunge lobungozi kukhodi yokuhlaziya isithombe esetshenziswe kuyo i-firmware UEFI ezithinta izinhlelo ze-Windows ne-Linux, kokubili amadivayisi asekelwe ku-x86 kanye ne-ARM. Ubuthakathaka bubizwa ngokuhlanganyela I-LogoFAIL ngoba zikhona kubahlaziyi bezithombe ze-UEFI ezibonisa ilogo yomkhiqizi lapho uhlelo luqala.

Ukuba sengozini kuvela ekujovweni kwamafayela esithombe ekuhlukaniseni uhlelo lwe-EFI (ESP), ingxenye ebalulekile yenqubo yokuqalisa. Nakuba ubungozi bungathinti ngokuqondile ubuqotho besikhathi sokusebenza, buvula umnyango wokuhlasela okungapheli ngokuvumela uhlelo olungayilungele ikhompuyutha ukuthi lugcinwe ngaphakathi kwesistimu.

Mayelana ne-LogoFAIL

Abacwaningi ngokubili Basho ukuthi ubungozi bakhonjwe ngesikhathi sokuhlaziywa kweLenovo firmware yakhelwe ezisekelweni ezivela ku-Insyde, AMI kanye ne-Phoenix, kodwa i-firmware evela ku-Intel ne-Acer nayo yashiwo njengabangase babe sengozini.

Inkinga yokuba sengozini kungenxa yokuthi abakhiqizi abaningi be-PC Basebenzisa i-UEFI eyakhiwe izinkampani ezimbalwa Baziwa ngokuthi Abathengisi Abazimele Be-BIOS (IBV) abavumela abakhiqizi bamakhompiyutha ukuthi benze i-firmware ngendlela oyifisayo, noma babonise ilogo yabo nezinye izici zokufaka uphawu kusikrini sekhompyutha phakathi nesigaba sokuqala sokuqalisa.

I-firmware I-UEFI yesimanje iqukethe izihlaluli zezithombe zezithombe ngamafomethi ahlukahlukene ezahlukene (BMP, GIF, JPEG, PCX kanye TGA), okwandisa kakhulu i-vector yokuhlasela ngakho-ke amathuba okuba sengozini adlule. Eqinisweni, ithimba le-Binarly lithole izingqinamba ze-29 kubahlaluli bezithombe ezisetshenziswe ku-Insyde, AMI, ne-Phoenix firmware, lapho i-15 yayisetshenziswa ngokusetshenziswa kwekhodi ngokungafanele.

"Le vector yokuhlasela inganikeza umhlaseli ithuba elihle ngokudlula izixazululo zokuphepha eziningi futhi ilethe ikhithi yokuqalisa ye-firmware eqinile ezoqhubeka nokuhlukaniswa kwe-ESP noma i-capsule ye-firmware enelogo eguquliwe,"

Ukuba sengozini kuvela ekujovweni kwamafayela esithombe aklanywe ngokukhethekile, enganikeza ukufinyelela okunelungelo lasendaweni engxenyeni ye-ESP ukuze ikhubaze izici zokuphepha ze-UEFI, iguqule i-oda lokuqalisa le-UEFI futhi ngenxa yalokho ivumele umhlaseli ukuthi afinyelele isistimu ekude noma avumele umhlaseli ukuthi athole ukufinyelela ngokomzimba kulokho okuqondiwe.

Kanjalo, Lobu buthakathaka bungafaka engcupheni ukuphepha kwalo lonke uhlelo, ihlinzeka ngezinyathelo zokuphepha "ezingaphansi kwe-OS", njenganoma yiluphi uhlobo lwebhuthi evikelekile, engasebenzi, kuhlanganise ne-Intel Boot Guard. Leli zinga lokuyekethisa lisho ukuthi abahlaseli bangathola ukulawula okujulile kumasistimu athintekile.

"Kwezinye izimo, umhlaseli angasebenzisa isixhumi esibonakalayo sokwenza ngokwezifiso ilogo esinikezwe umthengisi ukuze alayishe lezi zithombe ezinonya."

Le ngozi entsha iphakamisa ukukhathazeka okukhulu kubasebenzisi nezinhlangano Bathembela kumadivayisi avela kubakhiqizi abakhulu abafana ne-Intel, i-Acer, i-Lenovo, nabathengisi be-firmware be-UEFI njenge-AMI, i-Insyde, ne-Phoenix.

Kuze kube manje, kunzima ukunquma ubukhali, njengoba kungekho ukuxhashazwa komphakathi okushicilelwe futhi okunye ukukhubazeka okusesidlangalaleni manje kukalwe ngendlela ehlukile abacwaningi be-Binarly abathole ubungozi be-LogoFAIL.

Lokhu kudalulwa kuphawula umboniso wokuqala womphakathi yezindawo zokuhlasela ezihlobene enabahlaziyi bezithombe eziyingcaca ishumekwe ku-firmware yesistimu ye-UEFI kusukela ngo-2009, lapho abacwaningi u-Rafal Wojtczuk no-Alexander Tereshkin bethula ukuthi isiphazamisi somhlahleli wesithombe se-BMP singaxhashazwa kanjani ngenxa yokuphikelela kwe-malware.

Ngokungafani ne-BlackLotus noma i-BootHole, kubalulekile ukuqaphela ukuthi i-LogoFAIL ayiphuli ubuqotho besikhathi sokusebenza ngokulungisa i-bootloader noma ingxenye ye-firmware.

Ekugcineni, uma unentshisekelo yokwazi kabanzi ngakho, ungabheka imininingwane kufayela le- isixhumanisi esilandelayo.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Unomthwalo wemfanelo ngedatha: AB Internet Networks 2008 SL
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.