Unsolved
This post is more than 5 years old
2 Posts
0
4361
Looking for Meltdown and Spectre patches for some older Dell machines (760, 780, 790 and more)
My company is still using some of the following older Dell models. Can you tell me if these are susceptible to the Meltdown and Spectre security risks? If so, are BIOS updates are going to be available for them?
Optiplex | 760 |
Optiplex | 780 |
Optiplex | 790 |
Latitude | E4310 |
Latitude |
E4300 |
Latitude |
E6320 |
Philip_Yip
9 Legend
9 Legend
•
16K Posts
0
January 17th, 2018 06:00
3 of the systems have a 2017 UEFI BIOS update the other 3 are too old and have a Legacy BIOS.
OptiPlex 760 - Late 2008 (Legacy)
OptiPlex 780 - Late 2009 (Legacy)
OptiPlex 790 - Early 2011 (UEFI):
http://www.dell.com/support/home/uk/en/19/drivers/DriversDetails?productCode=optiplex-790&driverId=H58HD
Latitude E4300 - Mid 2008 (Legacy)
Latitude E4310 - Mid 2010 (UEFI):
http://www.dell.com/support/home/drivers/DriversDetails?productCode=latitude-e4310&driverId=WYXP3
Latitude E6320 - Early 2011 (UEFI):
http://www.dell.com/support/home/drivers/DriversDetails?productCode=latitude-e6320&driverId=NDDY8
speedstep
9 Legend
9 Legend
•
47K Posts
0
January 17th, 2018 07:00
microprocessor-side-channel-vulnerabilities
The complete affected platform list for Dell consumer products will be added as the information becomes available.
cve-2017-5715
cve-2017-5753
cve-2017-5754
impact-on-dell-products
http://www.dell.com/support/article/us/en/19/sln308587
St3veCo
2 Posts
0
January 18th, 2018 11:00
Hi Speedstep,
I've been checking that site but I don't see any of these machines listed there. Does that mean that there isn't going to be BIOS updates for them?
Thanks,
-Steve
speedstep
9 Legend
9 Legend
•
47K Posts
0
June 10th, 2018 08:00
I doubt that systems that old are supported so far past End of Life End of Support. There is an update for the 790 but not the 780 etc. The generic page below is where I would look based on model.
http://downloads.dell.com/published/Pages/index.html
Highly doubt 2003 thru 2010 systems will get updates. The 790 bios says Update to the latest CPU microcode for CVE-2017-5715 ("Spectre" / Branch Target Injection) .
may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. So if you have armed guards and lock your doors this is not likely a problem.
https://nvd.nist.gov/vuln/detail/CVE-2017-5715
Meltdown is
https://nvd.nist.gov/vuln/detail/CVE-2017-5753
https://nvd.nist.gov/vuln/detail/CVE-2017-5754
OptiPlex 790 System BIOSMore details
The OptiPlex 790 BIOS update package is a DUP-based update package. See that page for command line options. See the passwords section on that page for more information on performing BIOS updates when a BIOS password is set.
Updates
* Version A05 MUST be installed before installing version A06 and later.
A10*
A07*
A06*
Defects Fixed:
A05
A03
A02