[qubes-users] apropos: Dell DSA-2021-088

Hi, you probably saw this flaw that seems to be present on all Dell
machines >= 2009.


it is not entirely clear if BIOS itself is flawed, but
  - the phrase " insufficient access control vulnerability"
  - a new BIOS update on April 27
suggest that a bit. Do you have some more detailed information? If so,
it touches many qubes users as well, which brings me to a more general
question: Updating BIOS seems, generally, a security nightmare. Running
untrusted software from an untrusted OS on an USB-key enhances
likelihood of an evil-maid attack, and, worse, you are the maid !

I am curious on your comments / help suggestions. Best,