Vijay Sarvepalli

@gunsnrosesgirl3 probably mole carbs - also known as sand crabs

@MasterChiefEng It is a different Vijay Sarvepalli.. not me. perhaps - linkedin.com/in/vijay-sarve… ?

Does anyone see this as a valid patent / application? Nobody had a low priority, high priority interrupt vector table before? The patent application could be considered if it was at the bare minimum an innovative design implementation. patents.google.com/patent/US10067…

The SEI's CERT Division has released a new vulnerability note: Multiple deserialization vulnerabilities in PyTorch Lightning 2.4.0 and earlier versions. Learn more ➡️ kb.cert.org/vuls/id/252619…

Here is another #UEFI vulnerability that takes months to coordinate. UEFI blocking DBX updates are still trickling in - most Linux and Windows users, trusting SecureBoot, are currently vulnerable. Digitally signing supply-chain is another major gap in our UEFI 5 recommendations

In the upcoming #UEFIForum webinar “Coordinating #UEFI Vulnerabilities as CERT/CC,” @CarnegieMellon will provide practical steps when coordinating UEFI vulnerabilities. Join us for the webinar on Nov. 21 at 8 a.m. PT: bit.ly/4ffgZZ1

@evilsocket This is so broken disclosure. I don't think @evilsocket knows anything about responsible disclosure. english.ncsc.nl/latest/weblog/… certcc.github.io/CERT-Guide-to-…

Attacking UNIX Systems via CUPS, Part I evilsocket.net/2024/09/26/Att…

@evilsocket Have you tried CERT/CC kb.cert.org/vuls/vulcoordr… ?

* Unauthenticated RCE vs all GNU/Linux systems (plus others) disclosed 3 weeks ago. * Full disclosure happening in less than 2 weeks (as agreed with devs). * Still no CVE assigned (there should be at least 3, possibly 4, ideally 6). * Still no working fix. * Canonical, RedHat and others have confirmed the severity, a 9.9, check screenshot. * Devs are still arguing about whether or not some of the issues have a security impact. I've spent the last 3 weeks of my sabbatical working full time on this research, reporting, coordination and so on with the sole purpose of helping and pretty much only got patronized because the devs just can't accept that their code is crap - responsible disclosure: no more.

@binitamshah Is there a RCE POC? the POC is all crash so far. May be you are able to write one?

POC for CVE-2024-38063 (RCE in Windows TCP/IP) : github.com/ynwarcs/CVE-20…

Trying to find #pkfail in our servers -found one! vijay@thinkserver-TS$ efi-readvar -v PK Variable PK, length 862 PK: List 0, type X509 Signature 0, size 834, owner 26dc4851-195f-4ae1-9a19-fbf883bbb35e Subject: CN=DO NOT TRUST - AMI Test PK Issuer: CN=DO NOT TRUST - AMI Test PK

Here we go.. Secureboot needs reboot.. #pkfail #uefi

@NikolajSchlej Thanks for your work in FWSEC and your love/care for your parents! Safe travels..

Decided to take a leave of absence from my FWSEC job to care for my aging parents. Will be in Germany for the next ~6 months, will see if I could return to the US after that. It's unlikely I'll be able to actively work on UEFITool, but I'll return to it when life gets less busy.

"we are repeating the same mistakes that we did in the past, We decided at some point it is super convenient to mix code and data... we are mixing code and data that we send to these AI systems.... that are under the control of the user." Dr. Daniel Gruss youtube.com/watch?v=XxVHku…

Intel Hardware Shield deep dive: part 2 is SMM security policy reporting (ISSR, aka PPAM) and interaction with Windows' Secure Launch. tandasat.github.io/blog/2024/03/1… Another fascinating piece of technology! I have wanted to review this for a while and am glad I have spent time for it.

Here #UEFI SHIM related story has started. What happens when there is a bootloader vulnerability that is part of shim. eclypsium.com/blog/the-real-…

#UEFI security updates tricking in.. support.microsoft.com/en-us/topic/kb… "or later"...

@trailofbits Quality work by @trailofbits - thanks for their responsible disclosure and working with a number of Vendors.

Today, we are disclosing LeftoverLocals, a vulnerability that allows listening to LLM responses through leaked GPU local memory created by another process on Apple, Qualcomm, AMD, and Imagination GPUs (CVE-2023-4969) buff.ly/48RDP68

@quarkslab published their years worth of hard research work blog.quarkslab.com/pixiefail-nine… #UEFI reference implementation vulnerabilities.

This is some smoking good quality research on the zero-click adventures against iPhone.

@albinowax Congrats James!

I usually avoid non-technical posts... but can't resist sharing yesterday was the happiest day of my life #wedding

@matrosov @pagabuc @flothrone @xorpse @yeggorv @ant_av7 @certcc okay it is officially out now. CERT advisory and attempts to reach vendors at kb.cert.org/vuls/id/811862

Binarly REsearch will drop technical details on #LogoFAIL in 5 days! /cc @pagabuc @flothrone @xorpse @yeggorv @ant_av7 Thank you, @certcc and @vijaycert for coordinating this massive industry-wide disclosure!