英特爾確認 12 代酷睿 Alder Lake BIOS 源代碼泄露

來源：Aroged

點擊此處查看原文>>>

上週，有匿名者將疑似英特爾 12 代酷睿 Alder Lake BIOS 源代碼發佈到了 4chan 和 Github 上，其中 5.97GB 文件包含用於構建和優化 BIOS / UEFI 鏡像的工具和代碼。

現在，英特爾現已向外媒 Tom's Hardware 發佈聲明，確認該泄露代碼爲真。

我們的專有 UEFI 代碼似乎已被第三方泄露，但我們不認爲這會暴露出任何新的安全漏洞，因爲我們不依賴信息混淆作爲安全措施。此前，我們的 Project Circuit Breaker 漏洞獎勵計劃已涵蓋了此代碼，並鼓勵任何可能識別潛在漏洞的研究人員參與這項計劃，我們正在聯繫客戶和安全研究社區，讓他們瞭解這種情況。

Last week, it became known about the leakage of confidential Intel materials, including documentation and source code for UEFI for the LGA1700 platform and 12th generation Core chips. Intel’s reaction was not long in coming. The processor giant confirmed the authenticity of the published materials, but at the same time assured that the leak would not become a source of vulnerabilities. “Apparently, our proprietary UEFI code was posted by a third party. We do not believe this exposes any new vulnerabilities as we do not rely on information obfuscation as a security measure. This code is covered by our Project Circuit Breaker bug bounty program, and we encourage all researchers who can identify potential vulnerabilities to bring them to our attention through this program,” says an Intel spokesperson. It is worth adding that Intel does not disclose the source of the leak, however, references to Lenovo can be found in some published documents. Source:TechPowerUp stay updated with Aroged.com