When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
The vulnerability is tracked as CVE-2023-40547, and is described as a buffer overflow weakness.
It resides in shim, a component that runs in the firmware, before the booting of theoperating system.
It makes sure that every step of the booting process comes from a trusted supplier.
Another silver lining is that any bootkit malware abusing this flaw wouldnt survive a full hard drive wipe.
Given the decentralized nature of Linux distributions, patching is not that simple.
These have now made it to Linux distributors, who need to push them further, onto end users.
