Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
faq:software:security [2018/01/11 15:56] – TS | faq:software:security [2019/05/10 06:03] – [Which Shuttle products support TPM v2.0?] TS | ||
---|---|---|---|
Line 7: | Line 7: | ||
At this time we are investigating on this case as to what extend Shuttle products may be affected by vulnerabilities that cannot be patched by software updates alone. Should there be any BIOS updates required, we will provide them as soon as possible and keep you informed on availability. | At this time we are investigating on this case as to what extend Shuttle products may be affected by vulnerabilities that cannot be patched by software updates alone. Should there be any BIOS updates required, we will provide them as soon as possible and keep you informed on availability. | ||
- | * Update 2018-01-11\\ **First BIOS updates are available for download**\\ Updated BIOS/EFI files have been provided for the DH110SE and DH110 models, which contain modified microcode to fix one of the vulnerabilities in the affected processors: http:// | + | * //Update 2018-01-11//\\ **First BIOS updates are available for download**\\ Updated BIOS/EFI files have been provided for the DH110SE and DH110 models, which contain modified microcode to fix one of the vulnerabilities in the affected processors: |
+ | * //Update 2018-01-12// | ||
+ | * //Update 2018-01-18// | ||
+ | * //Update 2018-01-19// | ||
+ | * //Update 2018-01-23// | ||
+ | * //Update 2018-01-29// | ||
+ | ==== Spectre/ | ||
+ | //Update 2018-03-27//: | ||
+ | |||
+ | The new versions contain updated Microcode updates (00x84), relating to the Kaby Lake platform, which Intel has provided to its hardware partners. | ||
+ | |||
+ | The update (00xC2) for our Skylake-based Mini-PCs provided back in January is still current and the devices are thus secured (see list below). | ||
+ | |||
+ | However, with all updates that are offered it should be noted again that they only guarantee the best possible protection in conjunction with an up-to-date operating system which for its part is provided with the latest daily updates and patches. :!: | ||
+ | |||
+ | * **New BIOS updates** have been published for the following models (in alphabetical order):\\ DH110, DH110SE, DH170, DH270, DQ170, DS77U, DS77U3, DS77U5, DS77U7, NC03U, NC03U3, NC03U5, NC03U7, SH110R4, SH170R6, SZ170R8, SZ170R8V2, SZ270R8, SZ270R9, X50V6, XH110, XH110G, XH110V, XH170V, XH270 | ||
+ | |||
+ | You can access the downloads here: http:// | ||
+ | |||
+ | * Skylake-based products which have already received an update (in alphabetical order):\\ DS67U, DS67U3, DS67U5, DS67U7, DS68U, NC02U, NC02U3, NC02U5, NC02U7, X50V5, X50V5U3 | ||
===== BIOS updates against Intel ME and TXE security vulnerabilities ===== | ===== BIOS updates against Intel ME and TXE security vulnerabilities ===== | ||
Shuttle is aware of the Intel ME/TXE Elevation of privileges vulnerabilities and have released BIOS updates to fix the security vulnerability since. | Shuttle is aware of the Intel ME/TXE Elevation of privileges vulnerabilities and have released BIOS updates to fix the security vulnerability since. | ||
Line 27: | Line 46: | ||
**The following list shows which Shuttle XPC models include the fTPM v2.0 function.** | **The following list shows which Shuttle XPC models include the fTPM v2.0 function.** | ||
- | |||
^Category^Shuttle XPC Model^Intel Codename^Firmware TPM 2.0 support (fTPM)^ | ^Category^Shuttle XPC Model^Intel Codename^Firmware TPM 2.0 support (fTPM)^ | ||
^1L XPC slim (Celeron)^DX30|Apollo Lake|Initial BIOS DX30D000.101 (2016-11-07)| | ^1L XPC slim (Celeron)^DX30|Apollo Lake|Initial BIOS DX30D000.101 (2016-11-07)| | ||
Line 54: | Line 72: | ||
^15.6" XPC all-in-one^X50V4 Series|Haswell-U|No support| | ^15.6" XPC all-in-one^X50V4 Series|Haswell-U|No support| | ||
^:::^X50V5 Series|Skylake-U|Since BIOS version X50V5000.104 (2016-11-14)| | ^:::^X50V5 Series|Skylake-U|Since BIOS version X50V5000.104 (2016-11-14)| | ||
+ | |||
+ | :!: **Info**: Devices with **3xx chipset** (DH310, XH310,...) or higher have fTPM 2.0 integrated by default. | ||
**Source**: Wikipedia: [[wp> | **Source**: Wikipedia: [[wp> |