Bonum Certa Men Certa

With UEFI, TPM, Pluton Etc. Microsoft and Intel/AMD Trashed an Entire Generation of Computers, Made Security a Lot Worse in Order to Curtail GNU/Linux and BSD Adoption



Reprinted with permission from Ryan Farmer.

UEFI is Trash: Part 2 “Destroy the Computer to Continue Using Windows 11!”



This is a follow-up to my last post about System76 getting rid of UEFI and putting in Coreboot for their laptops.



UEFI is a security disaster.



Lenovo has patched my UEFI over 30 times and there are still releases like this month’s.



Modified:
1.  Enhancement to address security vulnerability CVE-2022-44611, CVE-2023-22616, CVE-2023-22615, CVE-2023-22612, CVE-2021-38578,
                                                  CVE-2022-24350, CVE-2023-22613, CVE-2021-38575
2.  Enhancement to address security vulnerability CVE-2022-46897, CVE-2023-27373, CVE-2023-26090, CVE-2023-27471, CVE-2022-24351,
                                                  CVE-2023-0286, CVE-2022-4304, CVE-2023-0215, CVE-2022-4450, CVE-2023-28468
3.  Enhancement to address security vulnerability CVE-2022-40982
4.  Enhancement to address security vulnerability CVE-2022-36392, CVE-2022-38102, CVE-2022-29871

-Lenovo


That’s TWENTY-TWO security vulnerabilities with a CVE that they’ve patched in one update (out of over thirty since this laptop was released in November 2020).



They’ve all been about like this.



“Security Expert” Matthew Garrett shows up to many debates about firmware, talking UEFI up as if it were possible to secure, if they even knew what they were doing with it.



Which they obviously, demonstrably, do not.



The recent Windows 11 “Unsupported Processor” error, had Microsoft say they were “working with OEMs” to provide “firmware updates”.



You’d need Windows to install the update, and Windows is already hosed if you got the update this month (you are making backups, right?), because it caused the system to Blue Screen of Death before the desktop is available to run any programs.



And even if you do install UEFI updates, which most users do not ever do, even once, you run the risk of bricking the entire computer to get Windows to behave itself enough to even do anything after you install the August Update.



(That’s if it doesn’t install the August Update and try to reboot itself while you’re trying to update the firmware. Does it still do things like this? Windows 10 was forcibly restarting for updates while people were live streaming games and had Microsoft Office open.)



Every time you update your firmware, any one of a million things can go wrong and leave the computer’s main board (which in a laptop has the CPU, RAM, and SSD soldered in sometimes, so kiss everything goodbye) utterly ruined.



That could be a Windows program (or virus) messing up the update process, Windows itself malfunctioning and freezing the computer before the update goes all the way in, the power going out, etc.



Of course you’re going to play Russian Roulette with your Lenovo laptop three dozen times, right? Right?



And even if it appears to update the UEFI, I have actually lost a motherboard (from Acer) while updating the correct firmware revision, and then had Acer refuse to do anything about it, so I had to find another motherboard that fit the case, and rebuild the entire desktop computer. (Which I’m sure all of you know how to do.)



So if you’re affected by Windows refusing to let you continue until you update the UEFI, it’s safer to just remove Windows and install Linux instead, because Linux doesn’t have fake errors like this.



It’s also worth mentioning that when I started tinkering with Windows 98 as a child and gutting the operating system of Internet Explorer, the Trident engine, the Windows 98 Shell Update (installing the Windows 95 B Shell), Outlook Express, and the several dozen useless components of Windows, using RoM II, I rebooted.



I said, “This is cool! Without all that Internet Explorer junk around, my games run 10% faster!”.



It was like a free graphics card, RAM, CPU, and hard disk update!



Even back then things were, relatively speaking, as bad as they are now, with the bloat.



You had a 4 GB hard disk and here comes Microsoft to spew at least 300 MB of useless trash all over it, you had a PC that came from the factory with 32 MB of RAM, or 64 if you were lucky, uh oh, here’s a bloated shell with IE stuff in it that takes up 11 MB more than it should!



They’ve always considered everything in your PC pretty much theirs to waste. You have an expensive PC? They’re wasting it on things you don’t even want to run.



But today, 25 years later, I say, “Let’s remove all this Windows junk so my games can go wheeeeeeee!”.



But for the adult in you, the average Linux distribution includes tons of Free and Open Source Software (as in freedom and price), including an entire Microsoft-compatible office suite that doesn’t go into “read-only” mode if your subscription to “Microsoft 365” lapses, saying “Pay Up, Chump!”.



Windows 11 treats its users like they’re running some kind of awful browser game with in-app purchases.



It’s not even really an operating system.



And you’re supposed to risk damaging a $1,500 laptop to continue running it because Microsoft is too incompetent to fix bugs?



Recent Techrights' Posts

Who Next After IBM? (Bubbles Don't Last Forever)
the demise of companies with "ai" in their name/domain
GNU/Linux Estimated at 8% "Market Share" Today (in statCounter)
Days ago it said 7.1%, then 7.3% or 7.4%
IBM Stock Collapses and It's Only the Beginning
Will GAFAM soon follow and will any executives be arrested for the accounting fraud insiders have long cautioned about?
 
Like Kyndryl, Multiple Securities Fraud Investigations Into IBM
Remember what happened to Kyndryl
How Long Before GNU/Linux is Measured at 20% in Chad?
The main way to get people to adopt Vista 11 is to sell them a new PCs and in poor countries it happens a lot less
Making Techrights Faster Down Under (Australia and New Zealand)
there's more to life than speed
Strikes at the EPO Approved for the Rest of the Year, "€1,3 Billion Taken From Staff Income"
Intensity can be revised and increased over time
Focusing on What We Really Ought to Focus on
Today we'll focus mostly on EPO affairs
Violence is Not a Joke
"Police say Widdecombe killing was targeted but motive remains unclear"
How to Properly Measure the Performance of a Patent Office
A "contribution from staff [which] is published by SUEPO Munich."
EPO "Cocaine Communication Manager" - Part XIV - "Not One of Us" (How the Group Dubbed by EPO Insiders "Alicante Mafia" Pushes Out Talent, Replacing It With Friends)
misuses the EPO's budget like it is a fountain of money for his friends
LibreTech Collective Abandons Microsoft GitHub and All Other Proprietary Software
Each time a project eliminates control by a hostile party it stands to gain
Links 15/07/2026: US Regime "Cuts Two Utah National Monuments by More Than 90%", "Hormuz is Less Crucial Than It Was"
Links for the day
Gemini Links 15/07/2026: Old Computer Challenge, "Trial by Fire", LLM Slop Destroying Companies
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 14, 2026
IRC logs for Tuesday, July 14, 2026
Heshan de Silva-Weeramuni Becomes Program Manager at the Free Software Foundation (FSF)
Heshan's addition means that the FSF is growing after a solid financial year (best in years)
Michael McMahon Explains Distributed Denial of Service (DDoS) Attacks on the Free Software Foundation (FSF)
The real solution is a curb on botnets. A mitigation strategy, however, would involve going static.
Matters of Public Safety
"Police say Ann Widdecombe killed in 'targeted attack' as motive investigated"
The Register MS and Its Promotional Microsoft Content
It's not too hard to see what the business model of The Register MS is
IBM: From $306 to $212 in 7 Days, IBM Won't Go Up More Than 50% to Where It Was at 'Peak Vapourware'
There's a limit to how much or how long a company can fake its performance and its potential [...] Early this morning a few insiders ("traders") cashed in on their "pump-n-dump"
Red Hat Staff Needs to Start Looking for the Next Job
Workers can conveniently lie or deny it to themselves, but waves of PIPs ("silent layoffs") will sweep over more and more units or teams as the company runs out of money to play with
IBM the Next Bear Stearns
IBM cannot recover if all it has to show is vapourware
I'll Be Extremely Difficult for Microsoft to Sell Any XBox Consoles Now
Microsoft understands this
How Software Freedom Would Benefit Everybody
A society that denies control by greedy companies would do a disservice to monopolies and improve all services to citizens
Links 14/07/2026: Harsh But Also Fair Criticism of Hey Hi (AI) Slop, 'Open' AI Shuts Down Its Own Products as Funds Run Out
Links for the day
Gemini Links 14/07/2026: Old CD Binder and AWK
Links for the day
In Defence of Physical Tickets
Tickets are not some "app" and not some "code" on some "screen"
Microsoft Layoffs Not Limited to XBox (False Narrative in the Mainstream Media)
Microsoft is becoming less relevant and workforce reductions won't end any time soon
Links 14/07/2026: Plagiarism Spun as "Training", Zelensky Announces Leadership Shuffle
Links for the day
The Register MS Has Just Published "AI" Webspam That Mentions "AI" 54 Times. It Was Paid to Do This.
Who pays for all this "AI" hype or "buzz"?
Gemini Links 14/07/2026: Self-Advocacy Online; "The Internet Is Dead: How the Web Lost Its Human Soul"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, July 13, 2026
IRC logs for Monday, July 13, 2026
Modern Technology Harms Women More Than Men (Because the 'Tech Bros' Who Dominate STEM Have a Poor View of Women)
“Privacy protects us from abuses by those in power, even if we're doing nothing wrong at the time of surveillance.”
Internet Relay Chat Trolls Are Not Expressing Opinions, They Are Saboteurs
For the record
Links 14/07/2026: "The Freedom of Information Act Is in Serious Trouble"; Irish Datacenters Use Up Almost 25% of Total Energy
Links for the day
The Register MS: "AI" Puff Pieces for Sale, Not Journalism at All, Just "Webspam"
The Register MS isn't the sole culprit
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, July 12, 2026
IRC logs for Sunday, July 12, 2026
How We Do Techrights (and What's Changing Next Week)
Many former news sites no longer yield much non-meaningless news (not anymore); there's a gap to be filled