The Linux kernel patch for CVE-2024-26836 corrects a subtle but important ordering bug in the platform/x86 think-lmi driver that could allow firmware attribute changes on Lenovo workstations to bypass intended Admin-password checks unless the driver runs the password opcode first — a fix that...
