LogoFAIL

A collection of resources from the Binarly REsearch team related to the far reaching vulnerability, LogoFAIL. Including analysis from a 6-month industry post mortem of fixes.

LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux

November 29, 2024
Binarly REsearch

Binarly researchers find a direct connection between the newly discovered Bootkitty Linux bootkit and exploitation of the LogoFAIL image parsing vulnerabilities reported more than a year ago.

‍

January 30, 2024

Inside the LogoFAIL PoC: From Integer Overflow to Arbitrary Code Execution

The Binarly REsearch team investigates how crashes of firmware parsers can be leveraged by attackers to achieve arbitrary code execution with firmware privileges during the boot process.

December 6, 2023

Finding LogoFAIL: The Dangers of Image Parsing During System Boot

The Binarly REsearch team investigated vulnerable image parsing components across the entire UEFI firmware ecosystem and found all major device manufacturers are impacted on both x86 and ARM-based devices.

November 29, 2023

The Far-Reaching Consequences of LogoFAIL

The Binarly REsearch team investigates vulnerable image parsing components across the entire UEFI firmware ecosystem and finds all major device manufacturers are impacted on both x86 and ARM-based devices.

Get a closer look at Binarly

Our team is available to talk to you about your specific requirements or to give you a full demo