cm0002@programming.dev to Linux@programming.dev · 2 days agoNew Linux Security Flaw Uses Initramfs to Inject Malwarewww.omgubuntu.co.ukexternal-linkmessage-square28fedilinkarrow-up193arrow-down14
arrow-up189arrow-down1external-linkNew Linux Security Flaw Uses Initramfs to Inject Malwarewww.omgubuntu.co.ukcm0002@programming.dev to Linux@programming.dev · 2 days agomessage-square28fedilink
minus-squarefmstrat@lemmy.nowsci.comlinkfedilinkEnglisharrow-up3arrow-down1·21 hours agoBut… your original comment is just… wrong? This isn’t a critical security flaw unless you have the worst partition scheme on your encrypted volumes imaginable. The default LUKS partition scheme is vulnerable. It’s not even a process flaw at that point, just “possible”. There is a successful POC, it is a flaw. you can compromise disks once encrypted because everything is happening in an in-memory boot process. This is not just in-memory. This is modifying the unencrypted part of initramfs on disk. Powering off the machine does not remove the exploit.
But… your original comment is just… wrong?
The default LUKS partition scheme is vulnerable.
There is a successful POC, it is a flaw.
This is not just in-memory. This is modifying the unencrypted part of initramfs on disk. Powering off the machine does not remove the exploit.