Intel Management Engine Patched

biffzinker · Feb 13, 2020

Ferrum Master said:
Could you show some documentation? It is kinda the info pushed to us to believe.

Earlier versions of ME before v6.0 allowed the whole firmware blob to be disabled.

From Libreboot FAQ:

ME firmware versions 6.0 and later, which are found on all systems with an Intel Core i3/i5/i7 CPU and a PCH, include “ME Ignition” firmware that performs some hardware initialization and power management. If the ME’s boot ROM does not find in the SPI flash memory an ME firmware manifest with a valid Intel signature, the whole PC will shut down after 30 minutes.

Libreboot – Frequently Asked Questions

libreboot.org

Ferrum Master · Feb 13, 2020

biffzinker said:
Earlier versions of ME before v6.0 allowed the whole firmware blob to be disabled.

Well it doesn't stop the Chinese even to make in house even X99 boards with no ME present at all or with an option to hard disable it. They are reusing plain AMI bios, with bits mostly from Pegatron. Bios itself is a very modular thing and recently quite well explored. So it is ME7, ME8 and ME9. If I haven't held such funny sight in my own hands I wouldn't believe it also, in my case it is ME7.1. But as RTB said... there are plenty of undocumented things regarding this... ahem cancer. I treat it as a risk. Any secret code without an option to look it and compile yourself and compare is a potential hazard. Prove me wrong.

It also basically proves actually ME is not needed. The 30min limit is an artificial limitation set, it is a countermeasure.

R-T-B · Feb 15, 2020

DeathtoGnomes said:
The discussion over IME and its vulnerabilities have been going on for over a decade, it was called something like the NSA spyware chip due to the rumored remote back door. If a patch for it makes big news, its likely there was more patched than was noted, like that back door is working again?.

Trust me you do want me patches. There never was any evidence for a backdoor either, people have taken that thing apart three ways if not a dozen more by now.

Ferrum Master said:
If the backdoor really is,

Ain't.

Ferrum Master said:
there are plenty of undocumented things regarding this... ahem cancer.

Yeah, indeed. Mostly out of date binaries in an old minix install.

It's almost comical.

DeathtoGnomes · Feb 16, 2020

R-T-B said:
There never was any evidence for a backdoor either, people have taken that thing apart three ways if not a dozen more by now.

The tinfoil hat conspiracists (is that even a word?) say there is and its still hidden. Just ask China.

:roll:

Ferrum Master · Feb 16, 2020

Well, it is not as a backdoor like it was made for it, it just has some zero day class exploit to gain the same. Backdoor or known bug, same imho. Thinking that it is flawless and does not have bugs is naive. Was it intentional or not, who knows...

Knowing how buggy things really are recently, those fings pop out like mushrooms after rain. Disabling it would be the most mature option.

SaltyFish · Feb 17, 2020

DeathtoGnomes said:
The tinfoil hat conspiracists (is that even a word?) say there is and its still hidden. Just ask China.

Amazingly, this popped up in the news recently. Looks like that tinfoil hat paid off for China (and Russia).

Swiss machines 'used to spy on governments for decades'

Secret control of a Swiss device enabled the US and Germany to collect classified information, reports say.

www.bbc.co.uk

lexluthermiester · Feb 17, 2020

DeathtoGnomes said:
conspiracists (is that even a word?)

It is.

R-T-B · Mar 8, 2020

Ferrum Master said:
Well, it is not as a backdoor like it was made for it, it just has some zero day class exploit to gain the same. Backdoor or known bug, same imho. Thinking that it is flawless and does not have bugs is naive.

I'll agree with that. I do find it hard to believe Intel could so comically naive as they try to appear.

SaltyFish said:
Amazingly, this popped up in the news recently. Looks like that tinfoil hat paid off for China (and Russia).

Swiss machines 'used to spy on governments for decades'

Secret control of a Swiss device enabled the US and Germany to collect classified information, reports say.

www.bbc.co.uk

Unrelated to ME.

You see, it's not that they aren't out to get you (in this case, they are), it's that literally EVERYTHING is not out to get you. :laugh:

ThrashZone · Mar 8, 2020

Hi,
Key phase seems to be discarded

A privileged user, with local access, could exploit the flaw to launch an array of attacks, according to Intel.

lexluthermiester · Mar 9, 2020

ThrashZone said:
Hi,
Key phase seems to be discarded

That is theorized, it has not been tested yet.

Please refer to the first topic starting at 1:56

Processor	Ryzen 9 5900X
Motherboard	MSI B450 Tomahawk ATX
Cooling	Cooler Master Hyper 212 Black Edition
Memory	VENGEANCE LPX 2 x 16GB DDR4-3600 C18 OCed 3800
Video Card(s)	XFX Speedster SWFT309 AMD Radeon RX 6700 XT CORE Gaming
Storage	970 EVO NVMe M.2 500 GB, 870 QVO 1 TB
Display(s)	Samsung 28” 4K monitor
Case	Phantek Eclipse P400S (PH-EC416PS)
Audio Device(s)	EVGA NU Audio
Power Supply	EVGA 850 BQ
Mouse	SteelSeries Rival 310
Keyboard	Logitech G G413 Silver
Software	Windows 10 Professional 64-bit v22H2

System Name	HELLSTAR
Processor	AMD RYZEN 9 5950X
Motherboard	ASUS Strix X570-E
Cooling	2x 360 + 280 rads. 3x Gentle Typhoons, 3x Phanteks T30, 2x TT T140 . EK-Quantum Momentum Monoblock.
Memory	4x8GB G.SKILL Trident Z RGB F4-4133C19D-16GTZR 14-16-12-30-44
Video Card(s)	Sapphire Pulse RX 7900XTX + under waterblock.
Storage	Optane 900P[W11] + WD BLACK SN850X 4TB + 750 EVO 500GB + 1TB 980PRO[FEDORA]
Display(s)	Philips PHL BDM3270 + Acer XV242Y
Case	Lian Li O11 Dynamic EVO
Audio Device(s)	Sound Blaster ZxR
Power Supply	Fractal Design Newton R3 1000W
Mouse	Razer Basilisk
Keyboard	Razer BlackWidow V3 - Yellow Switch
Software	FEDORA 39 / Windows 11 insider

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

System Name	Dumbass
Processor	AMD Ryzen 7800X3D
Motherboard	ASUS TUF gaming B650
Cooling	Artic Liquid Freezer 2 - 420mm
Memory	G.Skill Sniper 32gb DDR5 6000
Video Card(s)	GreenTeam 4070 ti super 16gb
Storage	Samsung EVO 500gb & 1Tb, 2tb HDD, 500gb WD Black
Display(s)	1x Nixeus NX_EDG27, 2x Dell S2440L (16:9)
Case	Phanteks Enthoo Primo w/8 140mm SP Fans
Audio Device(s)	onboard (realtek?) - SPKRS:Logitech Z623 200w 2.1
Power Supply	Corsair HX1000i
Mouse	Steeseries Esports Wireless
Keyboard	Corsair K100
Software	windows 10 H
Benchmark Scores	https://i.imgur.com/aoz3vWY.jpg?2

System Name	HELLSTAR
Processor	AMD RYZEN 9 5950X
Motherboard	ASUS Strix X570-E
Cooling	2x 360 + 280 rads. 3x Gentle Typhoons, 3x Phanteks T30, 2x TT T140 . EK-Quantum Momentum Monoblock.
Memory	4x8GB G.SKILL Trident Z RGB F4-4133C19D-16GTZR 14-16-12-30-44
Video Card(s)	Sapphire Pulse RX 7900XTX + under waterblock.
Storage	Optane 900P[W11] + WD BLACK SN850X 4TB + 750 EVO 500GB + 1TB 980PRO[FEDORA]
Display(s)	Philips PHL BDM3270 + Acer XV242Y
Case	Lian Li O11 Dynamic EVO
Audio Device(s)	Sound Blaster ZxR
Power Supply	Fractal Design Newton R3 1000W
Mouse	Razer Basilisk
Keyboard	Razer BlackWidow V3 - Yellow Switch
Software	FEDORA 39 / Windows 11 insider

Processor	Intel Core 2 QX6850
Motherboard	ABIT AB9 Pro
Cooling	Zalman CNPS-9900 MAX-R
Memory	Patriot PDC24G6400LLK (4x 2 GB)
Video Card(s)	Palit GeForce GTX 560 Ti Twin Light Turbo
Storage	Not Enough!
Display(s)	Samsung T240HD
Case	NZXT Zero
Audio Device(s)	Creative Labs Sound Blaster X-Fi Elite Pro
Power Supply	Thortech Thunderbolt Plus TTBPK00G 1000W
Mouse	Elecom M-DUX70BK
Keyboard	CM Storm Trigger (Cherry MX Brown)
Software	NOT Windows 10

System Name	Ghetto Rigs z490\|x99\|Acer 17 Nitro 7840hs/ 5600c40-2x16/ 4060/ 1tb acer stock m.2/ 4tb sn850x
Processor	10900k w/Optimus Foundation \| 5930k w/Black Noctua D15
Motherboard	z490 Maximus XII Apex \| x99 Sabertooth
Cooling	oCool D5 res-combo/280 GTX/ Optimus Foundation/ gpu water block \| Blk D15
Memory	Trident-Z Royal 4000c16 2x16gb \| Trident-Z 3200c14 4x8gb
Video Card(s)	Titan Xp-water \| evga 980ti gaming-w/ air
Storage	970evo+500gb & sn850x 4tb \| 860 pro 256gb \| Acer m.2 1tb/ sn850x 4tb\| Many2.5" sata's ssd 3.5hdd's
Display(s)	1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
Case	D450 \| Cherry Entertainment center on Test bench
Audio Device(s)	Built in Realtek x2 with 2-Insignia 2.0 sound bars & 1-LG sound bar
Power Supply	EVGA 1000P2 with APC AX1500 \| 850P2 with CyberPower-GX1325U
Mouse	Redragon 901 Perdition x3
Keyboard	G710+x3
Software	Win-7 pro x3 and win-10 & 11pro x3
Benchmark Scores	Are in the benchmark section