LVFS: ThinkPad T560/ThinkPad P50s

Lenovo (ThinkPad) ThinkPad T560/ThinkPad P50s

Lenovo ThinkPad T560/P50s ME Firmware N1CRG71W, 11.8.93.4323

These devices are unlikely to get updates to fix critical security problems. The vendor has marked this device end-of-life and are no longer officially supported.

Atom Feed

Version 184.93.4323
2022-10-27 00:53:51

Intel Platform Update 2022.3 Product Version Maintenance Release

Version 11.8.93.4323 (LVFS: 184.93.4323)

Problem Fixes

Mitigated the following security vulnerabilities under issues.Please see fixed issues for details.

Urgency	high
Reported Success	95% (high confidence)
Fixed issues:	CVE-2021-33159 CVE-2022-29893 CVE-2022-27497 CVE-2022-26845 INTEL-TA-00610
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.92.4222
2022-06-14 07:18:52

Intel Platform Update 2022.1 Product Version Maintenance Release

Version 11.8.92.4222 (LVFS: 184.92.4222)

Problem Fixes

Mitigated the following security vulnerabilities under issues.Please see fixed issues for details.

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2021-23168 Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-23188 Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an authenticated user to potentially enable information disclosure via local access. CVE-2022-21140 Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable information disclosure via local access. CVE-2022-21181 Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2022-0004 Hardware debug modes and processor INIT setting that allow override of locks for some Intel(R) Processors in Intel(R) Boot Guard and Intel(R) TXT may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2021-33159 Improper authentication in subsystem for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow a privileged user to potentially enable escalation of privilege via local access. INTEL-TA-00621 INTEL-TA-00613 INTEL-TA-00610
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.90.3987
2022-03-18 01:31:39

8 Intel Platform Update 2021.2 Product Version Maintenance Release

Version 11.8.90.3987 (LVFS: 184.90.3987)

Problem Fixes

Mitigated the following security vulnerabilities under issues.Please see fixed issues for details.

Note: Please suspend or disable any disk encryption tool prior to update.

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2021-0072 Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable information disclosure via local access. CVE-2021-0066 Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access. CVE-2021-0179 Improper Use of Validation Framework in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0178 Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0177 Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0171 Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an authenticated user to potentially enable information disclosure via local access. CVE-2021-0169 Uncontrolled Search Path Element in software for Intel(R) PROSet/Wireless Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-0167 Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2021-0163 Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. CVE-2021-0162 Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. CVE-2021-0165 Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2021-0164 Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access. CVE-2021-0161 Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable escalation of privilege via local access. INTEL-TA-00539
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.86.3909
2021-08-02 08:29:24

8 Intel Platform Update 2021.1 Release

Version 11.8.86.3909 (LVFS: 184.86.3909)

Problem Fixes

Mitigated the following security vulnerabilities under issues.Please see fixed issues for details.

Urgency	high
Reported Success	100% (medium confidence)
Fixed issues:	CVE-2020-24516 Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2020-24506 Out of bound read in a subsystem in the Intel(R) CSME versions before 12.0.81, 13.0.47, 13.30.17, 14.1.53 and 14.5.32 may allow a privileged user to potentially enable information disclosure via local access. CVE-2020-8703 Improper buffer restrictions in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32 and 15.0.22 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-24507 Improper initialization in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32, 13.50.11 and 15.0.22 may allow a privileged user to potentially enable information disclosure via local access. CVE-2020-8704 Race condition in a subsystem in the Intel(R) LMS versions before 2039.1.0.0 may allow a privileged user to potentially enable escalation of privilege via local access. INTEL-TA-00459
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.83.3874
2021-05-19 02:50:01

8 Intel Platform Update 2020.2 HF2 Release

Version 11.8.83.3874 (LVFS: 184.83.3874)

Problem Fixes

Mitigated several security vulnerabilities.Please see details under "Fixed Issues".

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2020-24588 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. CVE-2020-24587 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed. CVE-2020-24586 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data. INTEL-TA-00473
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.80.3746
2020-12-23 02:51:12

8 Intel Platform Update 2020.2 Release

Version 11.8.80.3746 (LVFS: 184.80.3746)

Problem Fixes

Mitigated the following security vulnerabilities under issues:

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2020-8749 Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. CVE-2020-8746 Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CVE-2020-12356 Out-of-bounds read in subsystem in Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local access. CVE-2020-8755 Race condition in subsystem for Intel(R) CSME versions before 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2020-8747 Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access. CVE-2020-8754 Out-of-bounds read in subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access. CVE-2020-8751 Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, Intel(R) TXE versions before 3.1.80 may allow an unauthenticated user to potentially enable information disclosure via physical access. CVE-2020-8760 Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-8756 Improper input validation in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-8757 Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-12303 Use after free in DAL subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via local access. CVE-2020-8705 Insecure default initialization of resource in Intel(R) Boot Guard in Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 3.1.80 and 4.0.30, Intel(R) SPS versions before E5_04.01.04.400, E3_04.01.04.200, SoC-X_04.00.04.200 and SoC-A_04.00.04.300 may allow an unauthenticated user to potentially enable escalation of privileges via physical access. CVE-2020-8753 Out-of-bounds read in DHCP subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access. CVE-2020-8744 Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-8745 Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2020-1297 A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1298, CVE-2020-1318, CVE-2020-1320.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.79.3722
2020-11-11 03:13:37

8 Intel Platform Update 2020.1 Hot Fix Release

Version 11.8.79.3722 (LVFS: 184.79.3722)

Problem Fixes

Mitigated security vulnerabilities.
IntelR ME SW 2020.14.0.1604 fails to install IntelR DAL and IntelR SOL with error gno driver was found

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2020-8758 Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticated user may potentially enable escalation of privilege via local access.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.77.3664
2020-07-24 01:20:59

8 Intel Platform Update 2020.1

Version 11.8.77.3664 (LVFS: 184.77.3664)

Problem Fixes

Intel CSME PSIRT-TA-2019-10-001 (IPU 2020.1):
Mitigated security vulnerabilities.

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2020-0545 Integer overflow in subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77 and Intel(R) TXE versions before 3.1.75, 4.0.25 and Intel(R) Server Platform Services (SPS) versions before SPS_E5_04.01.04.380.0, SPS_SoC-X_04.00.04.128.0, SPS_SoC-A_04.00.04.211.0, SPS_E3_04.01.04.109.0, SPS_E3_04.08.04.070.0 may allow a privileged user to potentially enable denial of service via local access. CVE-2020-0542 Improper buffer restrictions in subsystem for Intel(R) CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access. CVE-2020-0533 Reversible one-way hash in Intel(R) CSME versions before 11.8.76, 11.12.77 and 11.22.77 may allow a privileged user to potentially enable escalation of privilege, denial of service or information disclosure via local access. CVE-2020-0532 Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access. CVE-2020-0541 Out-of-bounds write in subsystem for Intel(R) CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-0540 Insufficiently protected credentials in Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access. CVE-2020-0539 Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 and Intel(R) TXE versions before 3.1.75, 4.0.25 may allow an unprivileged user to potentially enable denial of service via local access. CVE-2020-0538 Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable denial of service via network access. CVE-2020-0537 Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow a privileged user to potentially enable denial of service via network access. CVE-2020-0536 Improper input validation in the DAL subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 and Intel(R) TXE versions before 3.1.75 and 4.0.25 may allow an unauthenticated user to potentially enable information disclosure via network access. CVE-2020-0535 Improper input validation in Intel(R) AMT versions before 11.8.76, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access. CVE-2020-0534 Improper input validation in the DAL subsystem for Intel(R) CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow an unauthenticated user to potentially enable denial of service via network access. CVE-2020-0531 Improper input validation in Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an authenticated user to potentially enable information disclosure via network access.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive More details Firmware Details Compare with previous

Version 184.70.3626
2019-11-18 07:15:25

8 Q2'19 Intel Platform Update

Version 11.8.70.3626 (LVFS: 184.70.3626)

Problem Fixes

Intel CSME PSIRT-TA-201905-011 Q2 2019 IPU:
Mitigated security vulnerabilities.

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2019-11132 Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access. CVE-2019-11131 Logic issue in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access. CVE-2019-11110 Authentication bypass in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2019-11106 Insufficient session validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2019-11104 Insufficient input validation in MEInfo software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2019-11101 Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access. CVE-2019-11090 Cryptographic timing conditions in the subsystem for Intel(R) PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel(R) TXE 3.1.70 and 4.0.20; Intel(R) SPS before versions SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.086.0, SPS_E3_04.08.04.047.0 may allow an unauthenticated user to potentially enable information disclosure via network access. CVE-2019-11087 Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of service via local access. CVE-2019-0169 Heap overflow in subsystem in Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an unauthenticated user to potentially enable escalation of privileges, information disclosure or denial of service via adjacent access. CVE-2019-0168 Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45 and 13.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive Firmware Details Compare with previous

Version 184.65.3590
2019-06-25 09:21:00

8 Quarterly Security Release

Version 11.8.65.3590 (LVFS: 184.65.3590)

Problem Fixes

Intel CSME PSIRT-TA-201901-002 Q1 2019 QSR:

Urgency	high
Reported Success	100% (low confidence)
Fixed issues:	CVE-2019-0170 Buffer overflow in subsystem in Intel(R) DAL before version 12.0.35 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2019-0153 Buffer overflow in subsystem in Intel(R) CSME 12.0.0 through 12.0.34 may allow an unauthenticated user to potentially enable escalation of privilege via network access. CVE-2019-0098 Logic bug vulnerability in subsystem for Intel(R) CSME before version 12.0.35, Intel(R) TXE before 3.1.65, 4.0.15 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2019-0097 Insufficient input validation vulnerability in subsystem for Intel(R) AMT before version 12.0.35 may allow a privileged user to potentially enable denial of service via network access. CVE-2019-0096 Out of bound write vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an authenticated user to potentially enable escalation of privilege via adjacent network access. CVE-2019-0094 Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable denial of service via adjacent network access. CVE-2019-0093 Insufficient data sanitization vulnerability in HECI subsystem for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow a privileged user to potentially enable information disclosure via local access. CVE-2019-0092 Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2019-0090 Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2019-0086 Insufficient access control vulnerability in Dynamic Application Loader software for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive Firmware Details Compare with previous

Version 184.60.3561
2019-03-28 02:44:07

8 Quarterly Security Release

Version 11.8.60.3561 (LVFS: 184.60.3561)

Problem Fixes

Intel CSME PSIRT-TA-201810-004 Q4 2018 QSR:
Disabling "User CAPS STATE" in BIOS will issue a global reset.
A mismatch between the FW and the SMBIOS table when displaying the Processor upgrade info value.
Intel(R) ME does not work properly after performing FW Update.
PKI Provisioning fails.
Wrong device ID is displayed in FParts.txt file.
Firmware reset occurs when loading web storage, when using MeshCommander.
Wrong Intel(R) LMS version is displayed when executing "Meinfowin64.exe"
When starting user consent flow, MEBX Consent is not displayed.
Wrong values displayed In Intel(R) MEInfo:"FPF HW Source value" and "ME FPF Fusing Patch Status"
Intel(R) FPT, FPT Operation fails when executing "Fpt.efi -i".

Urgency	high
Reported Success	88% (low confidence)
Fixed issues:	CVE-2018-12185 Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially execute arbitrary code via physical access. CVE-2018-12196 Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow a privileged user to potentially execute arbitrary code via local access. CVE-2018-12187 Insufficient input validation in Intel(R) Active Management Technology (Intel(R) AMT) before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially cause a denial of service via network access. CVE-2018-12199 Buffer overflow in an OS component in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel TXE version before 3.1.60 or 4.0.10 may allow a privileged user to potentially execute arbitrary code via physical access. CVE-2018-12192 Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before version SPS_E5_04.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access. CVE-2018-12189 Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before 3.1.60 or 4.0.10 may allow privileged user to potentially modify data via local access. CVE-2018-12191 Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before versions 4.00.04.383 or SPS 4.01.02.174, or Intel(R) TXE before versions 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially execute arbitrary code via physical access. CVE-2018-12190 Insufficient input validation in Intel(r) CSME subsystem before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel(r) TXE before 3.1.60 or 4.0.10 may allow a privileged user to potentially enable an escalation of privilege via local access. CVE-2018-12188 Insufficient input validation in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before version 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially modify data via physical access.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive Firmware Details Compare with previous

Version 184.55.3510
2018-11-26 05:17:50

8 Quarterly Security Release

Version 11.8.55.3510 (LVFS: 184.55.3510)

Problem Fixes:

Intel CSME PSIRT-TA-201805-001-Q2-2018-CSME-QSR:
Fixed an issue where Intel(R) AMT might fail to connect to 802.1x WLAN Environment.

Urgency	high
Reported Success	88% (low confidence)
Fixed issues:	CVE-2018-3643 A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engine (CSME) before version 11.8.55, 11.11.55, 11.21.55, 12.0.6 or Intel(R) Server Platform Services firmware before version 4.x.04 may allow an attacker with administrative privileges to uncover certain platform secrets via local access or to potentially execute arbitrary code. CVE-2018-3616 Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network. CVE-2018-3659 A vulnerability in Intel PTT module in Intel CSME firmware before version 12.0.5 and Intel TXE firmware before version 4.0 may allow an unauthenticated user to potentially disclose information via physical access. CVE-2018-3658 Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access. CVE-2018-3657 Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access. CVE-2018-3644 CVE-2018-3655 A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access.
Licenses	Proprietary, distributed by agreement
Security	No issues found using FwHunt from Binarly More info Update is cryptographically signed More info Added to the LVFS by Lenovo More info Firmware can be verified after flashing More info Virus checked using ClamAV More info Vendor considers this device end of life More info Firmware has no detected SBoM More info
Release Gating	Not available to ChromeOS users More info

Download Archive Firmware Details

Lenovo (ThinkPad) ThinkPad T560/ThinkPad P50s

Version 184.93.4323 2022-10-27 00:53:51

Version 184.92.4222 2022-06-14 07:18:52

Version 184.90.3987 2022-03-18 01:31:39

Version 184.86.3909 2021-08-02 08:29:24

Version 184.83.3874 2021-05-19 02:50:01

Version 184.80.3746 2020-12-23 02:51:12

Version 184.79.3722 2020-11-11 03:13:37

Version 184.77.3664 2020-07-24 01:20:59

Version 184.70.3626 2019-11-18 07:15:25

Version 184.65.3590 2019-06-25 09:21:00

Version 184.60.3561 2019-03-28 02:44:07

Version 184.55.3510 2018-11-26 05:17:50

Version 184.93.4323
2022-10-27 00:53:51

Version 184.92.4222
2022-06-14 07:18:52

Version 184.90.3987
2022-03-18 01:31:39

Version 184.86.3909
2021-08-02 08:29:24

Version 184.83.3874
2021-05-19 02:50:01

Version 184.80.3746
2020-12-23 02:51:12

Version 184.79.3722
2020-11-11 03:13:37

Version 184.77.3664
2020-07-24 01:20:59

Version 184.70.3626
2019-11-18 07:15:25

Version 184.65.3590
2019-06-25 09:21:00

Version 184.60.3561
2019-03-28 02:44:07

Version 184.55.3510
2018-11-26 05:17:50