未经授权修改 UEFI 系统中的 UEFI 变量 问题:漏洞与防护 Lenovo 安全公告:LEN-2014-002 潜在影响:修改 UEFI 变量 重要性:中 摘要: 某些固件实现可能无法正确保护和验证特定 UEFI 变量中包含的信息。利用此类漏洞可能导致跳过安全功能和/或平台拒绝服务。 描述: 特定 UEFI 实现无法正确保护和验证“设置”UEFI 变量中包含的信息。在某些系统上,可使用操作系统 API 来覆盖该变量。利用该漏洞可能导致跳过安全引导等安全功能和/或平台拒绝服务。 解决方案: 受影响的产品: ThinkPad 系统 状态 最低 BIOS 版本,包括修复程序 发布网址 ThinkPad Edge E130 受到影响 H4ET93WW (2.53) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-edge-laptops/thinkpad-edge-e130/downloads/DS029430 ThinkPad Edge E145 受到影响 HSET58WW (2.03) http://support.lenovo.com/my/ms/products/laptops-and-netbooks/thinkpad-edge-laptops/thinkpad-edge-e145/downloads/DS036720 ThinkPad Edge E431/E531 受到影响 HEET47WW (1.28) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-edge-laptops/thinkpad-edge-e431/downloads/DS035124 ThinkPad Edge E440/E540 受到影响 J9ET93WW (2.13) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-edge-laptops/thinkpad-edge-e440/downloads/DS037207 ThinkPad Edge E455/E555 受到影响 HTET35WW (1.07) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-edge-laptops/thinkpad-e455/downloads/DS100990 ThinkPad Edge S430 受到影响 GAET98WW (2.58) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-edge-laptops/thinkpad-edge-s430/downloads/DS029726 ThinkPad Helix 受到影响 GFET50WW (1.29) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-helix-series-laptops/thinkpad-helix-type-3xxx/downloads/DS034627 ThinkPad L430/L530 受到影响 G3ETA2WW (2.62) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-l-series-laptops/thinkpad-l530/downloads/DS029124 ThinkPad L440/L540 受到影响 J4ET69WW (1.69) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-l-series-laptops/thinkpad-l440/downloads/DS037206 ThinkPad S1 Yoga(非 vPro) 受到影响 GQET38WW (1.18) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-yoga-series-laptops/thinkpad-yoga/downloads/DS038334 ThinkPad S1 Yoga(vPro) 受到影响 B0ET22WW (1.09) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-yoga-series-laptops/thinkpad-yoga/downloads/DS038334 ThinkPad S431 受到影响 HFET34WW (1.11) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-s-series-laptops/thinkpad-s431/downloads/DS035164 ThinkPad S440 受到影响 J3ET60WW (1.60) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-s-series-laptops/thinkpad-s440/downloads/DS036070 ThinkPad S531 受到影响 GKET33WW (1.13) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-s-series-laptops/thinkpad-s531/downloads/DS035584 ThinkPad S540 受到影响 GPET59WW (1.59) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-s-series-laptops/thinkpad-s540/downloads/DS038373 ThinkPad T430 受到影响 G1ETA6WW (2.66) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-t-series-laptops/thinkpad-t430/downloads/DS029252 ThinkPad T430s 受到影响 G7ETA1WW (2.61) http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-t-s
未经授权修改 UEFI 系统中的 UEFI 变量-联想乐享知识库
⚡ 核心结论
本文来源联想官方,解答关于 未经授权修改 UEFI 系统中的 UEFI 变量 的常见问题,包括:ThinkPad T430 为什么开机后安全启动失效或系统出现拒绝服务现象?等。
内容来源:联想官方
常见问题解答
ThinkPad T430 为什么开机后安全启动失效或系统出现拒绝服务现象?
原因是该机型存在UEFI变量保护漏洞(LEN-2014-002),其固件未能正确验证和保护‘设置’类UEFI变量,攻击者可能通过操作系统API非法覆盖该变量,导致安全启动被绕过或触发平台拒绝服务。解决方案是升级BIOS至最低修复版本G1ETA6WW(2.66):访问联想支持官网对应页面(http://support.lenovo.com/us/en/products/laptops-and-netbooks/thinkpad-t-series-laptops/thinkpad-t430/downloads/DS029252),下载并运行该BIOS更新程序;更新前请确保电量高于50%、连接AC电源,并全程保持开机状态;更新过程中切勿关机或重启,否则可能导致系统无法启动。