Last Friday the US District Court for the Eastern District of Virginia ruled [PDF] that Fitzpatrick will spend the next 20 years of his life on supervised release. For the first two years he'll be under home arrest and tracked by a GPS device, and for the first year he's forbidden to use the internet.
The series of nine vulnerabilities are found in EDK II - an open source implementation of UEFI maintained by TianoCore, according to researchers from Quarkslab that discovered the issue. Dubbed PixieFail, the weaknesses can be exploited through the preboot execution environment (also known as PXE) specification used for network booting.
[
Collection
]
[
|
...
]