Dell OptiPlex 3090 UFF - China HDD Protection

Updating the system firmware improves performance.

Atom Feed

Version 1.25.0
2024-02-16 01:37:14

This release contains security updates as disclosed in the Dell Security Advisories.For more information, see Dell Security Advisories and Notices.

Fixed the issue where the system reboots repeatedly and stops responding at the Dell Logo.This issue occurs when a system with an NVIDIA graphics card is connected to an 8K monitor.

Fixed the issue where the Admin Unlock window in the BIOS setup stops responding or the system reboots automatically.This issue occurs when you enter the wrong Master Password in the system password prompt by pressing CTRL+Enter.

Urgency low
Reported Success 100% (low confidence)
Fixed issues:
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.23.0
2023-10-13 11:52:22

-This release contains security updates as disclosed in the Dell Security Advisories DSA - 2023-190, DSA - 2023-152, and DSA - 2023-291.

-Fixes the issue where the BIOS admin password cannot be set if Dell Encryption PBA is active.

-Fixed the issue where the system can boot on the bootable key when the BIOS admin password is set.

-Fixed the issue where the system boots automatically when connected to a Dell Power Button Sync (DPBS) monitor.This issue occurs when the system enters Sleep mode.

-Fixed the issue where the system cannot display to an external monitor.This issue occurs when you try to turn on the system through the monitor power button on a Dell Power Button Sync (DPBS) monitor.

Urgency low
Fixed issues:
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.19.0
2023-06-05 07:09:11

This stable release fixes the following issues:

*This release contains security updates as disclosed in the - Dell Advisory 2023-091, 2023-095, and 2023-099.

*Fixed the issue where system cannot connect to the BIOSConnect server with all the supported WLAN cards.

Urgency critical
Fixed issues:
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.18.0
2023-03-16 07:13:52

-Fixed the issue where the system reboots repeatedly when USB bootable devices with longer product name and serial number are connected to the system.

-Fixed the issue where a small logo screen is displayed first and later switches to the full screen logo.This issue occurs when the Full Screen Logo option is enabled and you boot the system.

Urgency low
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.17.0
2023-01-12 08:13:34

-Firmware updates to address security vulnerabilities including (Common Vulnerabilities and Exposures - CVE) such as CVE - 2022 - 30704.

-Fixed the issue where the Show Password option is not displayed under the Wireless Networks in the BIOS setup.

-Fixed the issue where the system auto wakes up on days not selected by you in the Auto On Time function in the BIOS setup.

Urgency low
Fixed issues:
  • CVE-2022-30704

    Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.16.2
2022-12-22 06:40:33

Fixed the issue where Reboot Bypass does not work after rebooting the system.This issue occurs when you set Password Bypass from Disable to Reboot Bypass in the BIOS setup menu and install Dell Command Monitor (DCM) version 10.7.0.232.

Fixed the issue where the system does not boot into the Preboot Execution Environment (PXE) when the Wake on Lan feature is enabled in BIOS.This issue occurs when you use the Dell Command | PowerShell Provider to enable the ForcePXEOnNextBoot option.

Fixed the issue where the network disconnects when the system is connected to the RJ45 dongle through USB type-C port.

Fixed the issue where the key stops working when you press two keys together continuously.This issue occurs when the Dell KB522 keyboard is connected to the USB Type-A port.

Updated the Type-C Dock Override/Audio/Lan option to be unavailable when the Video/Power only on Type-C Ports option is enabled in the BIOS setup.

Urgency low
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.15.0
2022-10-17 08:17:36

Firmware updates to address security vulnerabilities including (Common Vulnerabilities and Exposures - CVE)

Urgency low
Fixed issues:
  • CVE-2022-32482

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2022-34400

    Dell BIOS contains a heap buffer overflow vulnerability. A local attacker with admin privileges could potentially exploit this vulnerability to perform an arbitrary write to SMRAM during SMM.

  • CVE-2022-26047

    Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi products may allow unauthenticated user to potentially enable denial of service via local access.

  • CVE-2022-21198

    Time-of-check time-of-use race condition in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2022-21160

    Improper buffer restrictions for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2022-21139

    Inadequate encryption strength for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2022-21240

    Out of bounds read for some Intel(R) PROSet/Wireless WiFi products may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2022-21212

    Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2022-21197

    Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2022-21172

    Out of bounds write for some Intel(R) PROSet/Wireless WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2021-44545

    Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2021-37409

    Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2021-23223

    Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.14.0
2022-10-13 09:31:13

Fixed the issue where the system stops responding at the Dell logo while booting.

Fixed the issue where the ESC key on the system keyboard stops working in the BIOS setup.This issue occurs when an external USB keyboard is connected to the system.

Fixed the issue where the admin password window is displayed when you run the Pre-Boot System Assessment (ePSA) in the BIOS setup.

Urgency low
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.13.0
2022-08-19 07:49:04

Firmware updates to address security vulnerabilities including (Common Vulnerabilities and Exposures - CVE) such as CVE - 2022-0778.

Urgency low
Fixed issues:
  • CVE-2022-0778

    The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.12.2
2022-07-27 09:23:37

Fixes issues:

  • Fixed the issue where the system shuts down unexpectedly.
  • Fixed the issue where the Wi-Fi cannot be launched.This issue occurs when you set the Wi-Fi connection through a BIOSConnect enterprise profile

Enhancements:

  • Updated the options in Absolute settings under Security tab in the BIOS setup.
  • Added the Self-Healing Image Recovery (SHIR) and Connect Provisioning to improve the operating system recovery using BIOSConnect
  • Added a dialog box for the user to save Pre-boot System Diagnostics logs in a storage media before exiting the Diagnostics.

Urgency low
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.11.0
2022-06-24 11:05:58

Fixed the issue where the Alt Gr key on the keyboard does not work in BIOS Setup Menu.

Firmware updates to address security vulnerabilities including (Common Vulnerabilities and Exposures - CVE) such as CVE -2022-0004.

Urgency medium
Fixed issues:
  • CVE-2022-0004

    Hardware debug modes and processor INIT setting that allow override of locks for some Intel(R) Processors in Intel(R) Boot Guard and Intel(R) TXT may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.10.0
2022-06-07 05:46:11

Enhancements:

Firmware updates to address security vulnerabilities.

Urgency low
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.7.0
2022-01-21 08:05:40

This stable release fixes the following issues:

  • Firmware updates to address security vulnerabilities.

Urgency None
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.4.6
2021-10-15 07:22:09

-Fixed the issue where 4 K 60 Hz monitors do not work beyond 30 Hz when connected to 2 K monitors through Multi-Stream Transport (MST).This issue occurs when USB-C Prioritization Options on Dell C2722DE or U2722DE 2 K monitors are set to 4 Lane.

Urgency medium
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.4.1
2021-08-30 10:25:19

-Firmware updates to address security vulnerabilities.

-Fixed the issue where systems with eMMC TX2964 and TX2932 hard drives display Data Wipe -operation failed error message.This issue occurs when doing the data wipe operation.

-Improved the system stability.

-Supports Realtek RTL8153DD-CG Ethernet Interface Controller.

-Enabled Intel Gaussian and Neural Accelerator (Intel GNA) for neural noise cancellation and to improve the system performance.

Urgency critical
Licenses
Security
Release Gating
Download Archive Firmware Details Compare with previous

Version 1.3.0
2021-07-30 08:07:33

This stable release fixes the following issues:

  • Enhanced the stability of the system with the display in Idle state.

Urgency medium
Licenses
Security
Release Gating
Download Archive Firmware Details

LVFS © 2015 Richard Hughes with icons from Font Awesome and GeoIP data from IP2Location.

Linux Vendor Firmware Service Project a Series of LF Projects, LLC :: Charter