Re: Downgrade attack?
I realized that I was somewhat more inflammatory than intended here. I'm only referring to the PSP vulnerabilities here, the other vulnerabilities are likely fixable with proper patches. The PSP stuff is more of a design flaw than anything else, a design flaw shared across Intel and other vendors. Basically, the problem is that with the central vendor-controlled firmware signing schemes, once a single ME/PSP version is cracked the entire useful purpose of that processor (preventing unauthorised code from booting on the low level firmware side) is gone, leaving only the DRM and other restrictions that harm the end user.