Press Release
GIGABYTE rolls out BIOS updates to go in line with Intel’s response to Intel Management (ME) and Intel Trusted Execution Engine (TXE) security vulnerabilities with the objective to fortify and enhance software resilience of Intel-based systems. Intel has identified security vulnerabilities that could potentially place impacted platforms at risk thus giving importance to this update. GIGABYTE highly recommends GIGABYTE motherboard users to visit the official website and download the latest BIOS version on the motherboard’s product page as well as the latest ME and TXE drivers.
Vulnerabilities
Affected Products
- 6th, 7th & 8th Generation Intel Core Processor Family
- Intel Xeon Processor E3-1200 v5 & v6 Product Family
- Intel Xeon Processor Scalable Family
- Intel Xeon Processor W Family
- Intel Atom C3000 Processor Family
- Apollo Lake Intel Atom Processor E3900 series
- Apollo Lake Intel Pentium
- Celeron N and J series Processors
- 6th, 7th & 8th Generation Intel Core Processor Family
- Intel Xeon Processor E3-1200 v5 & v6 Product Family
- Intel Xeon Processor Scalable Family
- Intel Xeon Processor W Family
- Intel Atom C3000 Processor Family
- Apollo Lake Intel Atom Processor E3900 series
- Apollo Lake Intel Pentium
- Celeron N and J series Processors
Based on the items identified through the comprehensive security review, an attacker could gain unauthorized access to platform, Intel ME feature, and 3rd party secrets protected by the Intel Management Engine (ME), Intel Server Platform Service (SPS), or Intel Trusted Execution Engine (TXE).
This includes scenarios where a successful attacker could:
- Impersonate the ME/SPS/TXE, thereby impacting local security feature attestation validity.
- Load and execute arbitrary code outside the visibility of the user and operating system.
- Cause a system crash or system instability.
BIOS Updates
GIGABYTE will be releasing BIOS updates starting with the Z370 motherboards and 200 Series motherboards then the rest of the previous generation motherboards. BIOS updates can be found in the Support section of the motherboard’s product page.
Sources
security-center.intel.com
http://uk.gigabyte.com/Press/News/1582