Intel Management Engine (ME) Firmware Version 11.8.55.3510

Voici un nouveau firmware Version 11.8.55.3510 en 5Mo ou 1.5Mo (professionnelle ou personnel) qui permet exclusivement les corrections de failles de sécurités et quelques bugs logiciels.

Voici la liste des failles:

CVE-2018-3655: Kernel security and patch update 

CVE-2018-3657: Multiple vulnerabilities in Ubuntu Linux kernel

CVE-2018-3658: The buffer overflow in the imageloadfont function in ext / gd / gd.c in PHP 4.4.x before 4.4.9 and in PHP 5.2 before 5.2.6-r6 allows context-dependent attackers to cause a denial of service ( crash) and possibly perform arbitrary code operations via a crafted font file.

CVE-2018-3659: When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.30 could have written a NULL pointer potentially to an already freed memory. The memory pools maintained by the server make this vulnerability hard to trigger in usual configurations, the reporter and the team could not reproduce it outside debug builds, so it is classified as low risk

CVE-2018-3616: Python Crypto vulnerability

CVE-2018-3643: Wget vulnerability

CVE-2018-3644: Vulnerability in the MySQL Server 

le reste des correctifs

- Fixed an issue where Intel(R) AMT might fail to connecte to 802.1x WLAN Environment.
- Fixed an issue where Intel(R) FWUpdate tool hangs when attempting to perform
   an update on a corrupted image.
- Fixed an issue where Intel(R) MEInfo returns an error after running MEInfoWin64.exe.

 

N'hésitez pas a mettre a jour votre chipsets Intel si celui-ci fait partie de la série Z170, Z270, Z370, …

disponible aussi

Comment mettre a jour votre firmware Intel Management Engine (ME)

Mise à jour importante du firmware Intel ME pour Serie 100 & 200

 

No comments