ZombieLoad - a new Intel security issue...

I haven't seen any official announcements from Dell as of now...

It will probably take them a while, especially if it means updating BIOS for affected models which will require extensive testing before release.

Note that OEMs probably won't release updates for old(er) systems that are considered "End of Life" even if they are potentially affected by ZombieLoad. So every model may not get updated, which is how OEMs handled Meltdown/Spectre, in the previous round of Intel security problems.

You can check the support page for your specific model, from time to time, to see if a new version of BIOs and/or new drivers are released to fix this problem or use SupportAssist to alert you to updates. But do not let SupportAssist run a BIOS update for you, do it manually yourself...My 2 cents...

Intel-SA-00213, Intel-SA-00223 and Intel-SA-00233 impact on Dell Client Platform Products, 5/15/2019

Thanks Chris. :Yes:

I STRONGLY Recommend removing antivirus software OR installing windows clean on a blank hard drive to do the updates.

Reinstall of Antivirus products is fine AFTER THE UPDATE IS FINISHED.

I wish Dell would make a bootable ISO like other vendors to do this.

I'm not seeing optiplex 7010, is Dell going to update these Models?

There are tons of them in use actually.

Kind regards

The 7010 is from 2011 and its 2019 so its not likely.

5 years is typical for system design life cycle.

Oldest supported model is 7020/9020

INTEL has also stopped updates for older processors.

After a comprehensive investigation of the microarchitectures and microcode capabilities for these products, Intel has determined to not release microcode updates for these products for one or more reasons including, but not limited to the following:
– Micro-architectural characteristics that preclude a practical implementation of features mitigating Variant 2 (CVE-2017-5715)
– Limited Commercially Available System Software support

Microsoft pulled support to prevent unpredictable system behaviors, performance issues, and/or unexpected reboots after installation of microcode.

https://support.microsoft.com/en-us/help/4078130/update-to-disable-mitigation-against-spectre-variant-2

Elena's Fire Ax or the Baseball Bat are required to not be vulnerable to Zombies.

Choose Your Weapon

Intel CPU's are the same generation for 7010, 7020 and 9020, so if intel releases microcode for 3rd Gen CPUs, it will apply for all models!

It is up to Dell to make a BIOS for the 7010 model.

Lots and lots of models 7010 on usage, I think it is the most sold model from Dell.

Kind regards

According to Dell's support pages, BIOS and chipset drivers for Optiplex 7010 are only compatible with the 7010 and 9010, but not with the 7020 or 9020.

The 7010 has the Intel 7 Series chipset and the others have the Intel Series 8 chipset. So even if they use the same processor, the 7010 requires a totally different set of updates.

The 2011 7010/9010 is not same generation as 2013 7020/9020
The 7010 DOES NOT implement UEFI 2.3.1 aka Windows 8 Secure boot.
The 7010 DOES support XP and VISTA which is NOT ALLOWED on a 7020

https://www.dell.com/support/article/us/en/04/how13914/optiplex-7010-xp-driver-cab?lang=en

7010 is 3rd Gen Ivy Bridge based cpu and chipset.
Intel® Core™ i7 3770 / 3.40GHz, 8M, VT-x, VT-d, TXT (vPro™) max.
https://www.dell.com/downloads/global/products/optix/en/optiplex_7010_technical_guidebook.pdf

The 7020 9020 is based on 4th Gen Haswell Q87 chipset.

Intel® Core™ i7 4790T
So I disagree on all counts.

All of these have spectre and meltdown as well as Zombie vulnerability.

It's doubtful that mitigations will be had for Sandy Bridge,  Ivy Bridge, Haswell based processors EVER.

2nd generation Intel® Core™ processors  2009
3rd generation Intel® Core™ processors   2011
4th generation Intel® Core™ processors   2013
5th generation Intel® Core™ processors
6th generation Intel® Core™ processors
7th generation Intel® Core™ processors
8th generation Intel® Core™ processors