Intel Management Engine Patched

biffzinker · Feb 13, 2020

Ferrum Master said:
Could you show some documentation? It is kinda the info pushed to us to believe.

Earlier versions of ME before v6.0 allowed the whole firmware blob to be disabled.

From Libreboot FAQ:

ME firmware versions 6.0 and later, which are found on all systems with an Intel Core i3/i5/i7 CPU and a PCH, include “ME Ignition” firmware that performs some hardware initialization and power management. If the ME’s boot ROM does not find in the SPI flash memory an ME firmware manifest with a valid Intel signature, the whole PC will shut down after 30 minutes.

Libreboot – Frequently Asked Questions about Libreboot firmware

libreboot.org

Ferrum Master · Feb 13, 2020

biffzinker said:
Earlier versions of ME before v6.0 allowed the whole firmware blob to be disabled.

Well it doesn't stop the Chinese even to make in house even X99 boards with no ME present at all or with an option to hard disable it. They are reusing plain AMI bios, with bits mostly from Pegatron. Bios itself is a very modular thing and recently quite well explored. So it is ME7, ME8 and ME9. If I haven't held such funny sight in my own hands I wouldn't believe it also, in my case it is ME7.1. But as RTB said... there are plenty of undocumented things regarding this... ahem cancer. I treat it as a risk. Any secret code without an option to look it and compile yourself and compare is a potential hazard. Prove me wrong.

It also basically proves actually ME is not needed. The 30min limit is an artificial limitation set, it is a countermeasure.

R-T-B · Feb 15, 2020

DeathtoGnomes said:
The discussion over IME and its vulnerabilities have been going on for over a decade, it was called something like the NSA spyware chip due to the rumored remote back door. If a patch for it makes big news, its likely there was more patched than was noted, like that back door is working again?.

Trust me you do want me patches. There never was any evidence for a backdoor either, people have taken that thing apart three ways if not a dozen more by now.

Ferrum Master said:
If the backdoor really is,

Ain't.

Ferrum Master said:
there are plenty of undocumented things regarding this... ahem cancer.

Yeah, indeed. Mostly out of date binaries in an old minix install.

It's almost comical.

DeathtoGnomes · Feb 16, 2020

R-T-B said:
There never was any evidence for a backdoor either, people have taken that thing apart three ways if not a dozen more by now.

The tinfoil hat conspiracists (is that even a word?) say there is and its still hidden. Just ask China.

:roll:

Ferrum Master · Feb 16, 2020

Well, it is not as a backdoor like it was made for it, it just has some zero day class exploit to gain the same. Backdoor or known bug, same imho. Thinking that it is flawless and does not have bugs is naive. Was it intentional or not, who knows...

Knowing how buggy things really are recently, those fings pop out like mushrooms after rain. Disabling it would be the most mature option.

SaltyFish · Feb 17, 2020

DeathtoGnomes said:
The tinfoil hat conspiracists (is that even a word?) say there is and its still hidden. Just ask China.

Amazingly, this popped up in the news recently. Looks like that tinfoil hat paid off for China (and Russia).

Swiss machines 'used to spy on governments for decades'

Secret control of a Swiss device enabled the US and Germany to collect classified information, reports say.

www.bbc.co.uk

lexluthermiester · Feb 17, 2020

DeathtoGnomes said:
conspiracists (is that even a word?)

It is.

R-T-B · Mar 8, 2020

Ferrum Master said:
Well, it is not as a backdoor like it was made for it, it just has some zero day class exploit to gain the same. Backdoor or known bug, same imho. Thinking that it is flawless and does not have bugs is naive.

I'll agree with that. I do find it hard to believe Intel could so comically naive as they try to appear.

SaltyFish said:
Amazingly, this popped up in the news recently. Looks like that tinfoil hat paid off for China (and Russia).

Swiss machines 'used to spy on governments for decades'

Secret control of a Swiss device enabled the US and Germany to collect classified information, reports say.

www.bbc.co.uk

Unrelated to ME.

You see, it's not that they aren't out to get you (in this case, they are), it's that literally EVERYTHING is not out to get you. :laugh:

ThrashZone · Mar 8, 2020

Hi,
Key phase seems to be discarded

A privileged user, with local access, could exploit the flaw to launch an array of attacks, according to Intel.

lexluthermiester · Mar 9, 2020

ThrashZone said:
Hi,
Key phase seems to be discarded

That is theorized, it has not been tested yet.

Please refer to the first topic starting at 1:56

Processor	Intel Core i7-13700 PL2 150W
Motherboard	MSI Z790 Gaming Plus WiFi
Cooling	Cooler Master RGB Tower cooler
Memory	Crucial Pro DDR5-5600 32GB Kit OC 6600
Video Card(s)	Gigabyte Radeon RX 9070 GAMING OC 16G
Storage	970 EVO NVMe 500GB, WD850N 2TB
Display(s)	Samsung 28” 4K monitor
Case	Corsair iCUE 4000D RGB AIRFLOW
Audio Device(s)	EVGA NU Audio, Edifier Bookshelf Speakers R1280
Power Supply	TT TOUGHPOWER GF A3 Gold 1050W
Mouse	Logitech G502 Hero
Keyboard	Logitech G G413 Silver
Software	Windows 11 Professional v24H2

System Name	HELLSTAR
Processor	AMD RYZEN 9 5950X
Motherboard	ASUS Strix X570-E
Cooling	2x 360 + 280 rads. 3x Gentle Typhoons, 3x Phanteks T30, 2x TT T140 . EK-Quantum Momentum Monoblock.
Memory	4x8GB G.SKILL Trident Z RGB F4-4133C19D-16GTZR 14-16-12-30-44
Video Card(s)	Sapphire Pulse RX 7900XTX. Water block. Crossflashed.
Storage	Optane 900P[Fedora] + WD BLACK SN850X 4TB + 750 EVO 500GB + 1TB 980PRO+SN560 1TB(W11)
Display(s)	Philips PHL BDM3270 + Acer XV242Y
Case	Lian Li O11 Dynamic EVO
Audio Device(s)	SMSL RAW-MDA1 DAC
Power Supply	Fractal Design Newton R3 1000W
Mouse	Razer Basilisk
Keyboard	Razer BlackWidow V3 - Yellow Switch
Software	FEDORA 41

System Name	Pioneer
Processor	Ryzen 9 9950X
Motherboard	MSI MAG X670E Tomahawk Wifi
Cooling	Noctua NH-D15 + A whole lotta Sunon, Phanteks and Corsair Maglev blower fans...
Memory	64GB (2x 32GB) G.Skill Flare X5 @ DDR5-6200(Running 1T no GDM)
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	Intel 5800X Optane 800GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs, 1x 2TB Seagate Exos 3.5"
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64, other office machines run Windows 11 Enterprise

System Name	Dumbass
Processor	AMD Ryzen 7800X3D
Motherboard	ASUS TUF gaming B650
Cooling	Artic Liquid Freezer 2 - 420mm
Memory	G.Skill Sniper 32gb DDR5 6000
Video Card(s)	GreenTeam 4070 ti super 16gb
Storage	Samsung EVO 500gb & 1Tb, 2tb HDD, 500gb WD Black
Display(s)	1x Nixeus NX_EDG27, 2x Dell S2440L (16:9)
Case	Phanteks Enthoo Primo w/8 140mm SP Fans
Audio Device(s)	onboard (realtek?) - SPKRS:Logitech Z623 200w 2.1
Power Supply	Corsair HX1000i
Mouse	Steeseries Esports Wireless
Keyboard	Corsair K100
Software	windows 10 H
Benchmark Scores	https://i.imgur.com/aoz3vWY.jpg?2

System Name	HELLSTAR
Processor	AMD RYZEN 9 5950X
Motherboard	ASUS Strix X570-E
Cooling	2x 360 + 280 rads. 3x Gentle Typhoons, 3x Phanteks T30, 2x TT T140 . EK-Quantum Momentum Monoblock.
Memory	4x8GB G.SKILL Trident Z RGB F4-4133C19D-16GTZR 14-16-12-30-44
Video Card(s)	Sapphire Pulse RX 7900XTX. Water block. Crossflashed.
Storage	Optane 900P[Fedora] + WD BLACK SN850X 4TB + 750 EVO 500GB + 1TB 980PRO+SN560 1TB(W11)
Display(s)	Philips PHL BDM3270 + Acer XV242Y
Case	Lian Li O11 Dynamic EVO
Audio Device(s)	SMSL RAW-MDA1 DAC
Power Supply	Fractal Design Newton R3 1000W
Mouse	Razer Basilisk
Keyboard	Razer BlackWidow V3 - Yellow Switch
Software	FEDORA 41

Processor	Intel Core 2 QX6850
Motherboard	ABIT AB9 Pro
Cooling	Zalman CNPS-9900 MAX-R
Memory	Patriot PDC24G6400LLK (4x 2 GB)
Video Card(s)	Palit GeForce GTX 560 Ti Twin Light Turbo
Storage	Not Enough!
Display(s)	Samsung T240HD
Case	NZXT Zero
Audio Device(s)	Creative Labs Sound Blaster X-Fi Elite Pro
Power Supply	Thortech Thunderbolt Plus TTBPK00G 1000W
Mouse	Elecom M-DUX70BK
Keyboard	CM Storm Trigger (Cherry MX Brown)
Software	NOT Windows 10

System Name	Ghetto Rigs z490\|x99\|Acer 17 Nitro 7840hs/ 5600c40-2x16/ 4060/ 1tb acer stock m.2/ 4tb sn850x
Processor	10900k w/Optimus Foundation \| 5930k w/Black Noctua D15
Motherboard	z490 Maximus XII Apex \| x99 Sabertooth
Cooling	oCool D5 res-combo/280 GTX/ Optimus Foundation/ gpu water block \| Blk D15
Memory	Trident-Z Royal 4000c16 2x16gb \| Trident-Z 3200c14 4x8gb
Video Card(s)	Titan Xp-water \| evga 980ti gaming-w/ air
Storage	970evo+500gb & sn850x 4tb \| 860 pro 256gb \| Acer m.2 1tb/ sn850x 4tb\| Many2.5" sata's ssd 3.5hdd's
Display(s)	1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
Case	D450 \| Cherry Entertainment center on Test bench
Audio Device(s)	Built in Realtek x2 with 2-Insignia 2.0 sound bars & 1-LG sound bar
Power Supply	EVGA 1000P2 with APC AX1500 \| 850P2 with CyberPower-GX1325U
Mouse	Redragon 901 Perdition x3
Keyboard	G710+x3
Software	Win-7 pro x3 and win-10 & 11pro x3
Benchmark Scores	Are in the benchmark section