<div dir="ltr">The ME is the WEP of motherboards.</div><br><div class="gmail_quote"><div dir="ltr">On Mon, May 1, 2017 at 9:18 AM persmule <<a href="mailto:persmule@gmail.com">persmule@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
  
    
  
  <div bgcolor="#FFFFFF" text="#000000">
    <div class="m_-2965024940895491820moz-cite-prefix">We could just remove or <a href="https://github.com/corna/me_cleaner" target="_blank">cleanse</a> the ME to
      seal this loophole.</div></div><div bgcolor="#FFFFFF" text="#000000"><div class="m_-2965024940895491820moz-cite-prefix"><br>
      <br>
      在 2017年05月02日 00:13, Sam Kuper 写道:<br>
    </div></div><div bgcolor="#FFFFFF" text="#000000">
    <blockquote type="cite">
      <pre>On 01/05/2017, Shawn <a class="m_-2965024940895491820moz-txt-link-rfc2396E" href="mailto:citypw@gmail.com" target="_blank"><citypw@gmail.com></a> wrote:
</pre>
      <blockquote type="cite">
        <pre><a class="m_-2965024940895491820moz-txt-link-freetext" href="https://semiaccurate.com/2017/05/01/remote-security-exploit-2008-intel-platforms/" target="_blank">https://semiaccurate.com/2017/05/01/remote-security-exploit-2008-intel-platforms/</a>
</pre>
      </blockquote>
      <pre>
The piece states, "on April 25, Intel released a firmware fix for this
unnamed issue. It affects every Intel machine from Nehalem in 2008 to
Kaby Lake in 2017."

Has anyone here got a link describing or including the fix, either
directly from Intel, or from an OEM? At the moment, there are no
advisories listed at <a class="m_-2965024940895491820moz-txt-link-freetext" href="https://security-center.intel.com/advisories.aspx" target="_blank">https://security-center.intel.com/advisories.aspx</a>
newer than April 3, so presumably either the piece is false, or else
the firmware fix was released to OEMs but not publicly.

Discussion elsewhere:

<a class="m_-2965024940895491820moz-txt-link-freetext" href="https://news.ycombinator.com/item?id=14237266" target="_blank">https://news.ycombinator.com/item?id=14237266</a>

<a class="m_-2965024940895491820moz-txt-link-freetext" href="https://www.reddit.com/r/linux/comments/68ma1a/every_intel_platform_with_amt_ism_and_sbt_from/" target="_blank">https://www.reddit.com/r/linux/comments/68ma1a/every_intel_platform_with_amt_ism_and_sbt_from/</a>

</pre>
    </blockquote>
    <p><br>
    </p>
  </div>

--<br>
coreboot mailing list: <a href="mailto:coreboot@coreboot.org" target="_blank">coreboot@coreboot.org</a><br>
<a href="https://mail.coreboot.org/mailman/listinfo/coreboot" rel="noreferrer" target="_blank">https://mail.coreboot.org/mailman/listinfo/coreboot</a></blockquote></div>