Intel has some updates to their products:
https://itpeernetwork.intel.com/intel-atom-c3000-intelligent-edge/
Tag Archives: Intel
Intel patent on “PCI Expansion ROM OS”
brief patent mention: spoiler alert…..
Fun, Pinczakko’s PCI expansion ROM research was cited in an Intel patent claim. 🙂
http://bioshacking.blogspot.com/2017/08/rather-late-surprise-intel-has-pci.html
https://sites.google.com/site/pinczakko/building-a-kernel-in-pci-expansion-rom
Intel seeks senior security researcher
•Knowledge of computer architecture CPU, SoC, chipsets, BIOS, Firmware, Drivers, and others
http://jobs.intel.com/ShowJob/Id/1306880/Senior%20Security%20Researcher
Vincent on UEFI Capsule updates
Vincent has a new blog post, talking about UEFI’s Capsule Updates, and how OS-present tools call them.
http://vzimmer.blogspot.com/2017/08/accessing-uefi-updatecapsule-from.html
Alex on Intel segmentation
[…]What I discovered completely changed my understanding of 64-bit Long Mode semantics and challenged many assumptions I was making – pinging a few other experts, it seems they were as equally surprised as I was (even Mateusz”j00ru” Jurczyk wasn’t aware!). Throughout this blog post, you’ll see how x64 processors, even when operating in 64-bit long mode[…]
http://www.alex-ionescu.com/?p=340
See-also:
http://j00ru.vexillium.org/?p=290
Intel Graphics Driver for Windows: DoS vulnerability
Excerpt of advisory below, see full one for list of drivers impacted.
DoS in Kernel in multiple versions of the Intel Graphics Driver allows local attacker to perform a DoS via an Out of Bounds Read
Intel ID: INTEL-SA-00077
Product family: Mobile, Desktop, Server, Workstation, and Embedded processors based on Intel® Core™ and Atom™ Processors using an affected driver.
Impact of vulnerability: Denial of Service
Severity rating: Moderate
Original release: Jul 31, 2017
Last revised: Aug 01, 2017
Out-of-bounds read condition in older versions of some Intel® Graphics Driver for Windows code branches allows local users to perform a denial of service attack. Intel recommends that users download and upgrade to the latest supported driver. Intel would like to thank Enrique Nissim of IOActive for reporting this issue and working with us on a coordinated disclosure.
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00077&languageid=en-fr
Intel’s Black Hat UEFI presentation online
Vincent has a new blog post about the recent talk about UEFI security that Intel just gave at Black Hat Briefings.
http://vzimmer.blogspot.com/2017/08/black-hat-usa-2017-firmware-is-new-black.html
https://github.com/rrbranco/BlackHat2017
https://github.com/rrbranco/BlackHat2017/blob/master/BlackHat2017-BlackBIOS-v0.13-Published.pdf
