Embedded Intel® Core™ Processors
Communicate Intel® Core™ Hardware, Software, Firmware, Graphics Concerns
1322 Discussions

Intel Xeon-D 1712 TR: Potential Buffer Overflow When Handling UEFI Variables

Swapna-
Novice
‎07-17-2024 12:19 PM
960 Views

Hi Intel Team,

 

I came across this link

https://www.tomshardware.com/pc-components/cpus/firmware-flaw-affects-numerous-generations-of-intel-cpus-uefi-code-execution-vulnerability-found-for-intel-cpus-from-14th-gen-raptor-lake-to-6th-gen-skylake-cpus.

 

This indicates a possible buffer overflow issue on intel chipsets from gen14 to gen6. We are using Intel Xeon-D 1712 TR processor and would like to know if our chipset is affected.

It appears our processor belongs to Icelake D and it is shown in the list but unsure if our processor uses Phoenix SecureCore. Could you please confirm?

Swapna_0-1721243394510.png

Thanks,

Swapna

 

Labels (1)
Labels:

Link Copied

3 Replies
NormanS_Intel
Moderator
‎07-18-2024 07:28 PM
895 Views

Hello Swapna-,

 

Thank you for posting in the community!

 

To ensure you receive the most specialized assistance, we have a dedicated forum that addresses these specific concerns. Therefore, I will be moving this discussion to our Server Forum. This will allow our knowledgeable community and experts to provide you with timely and accurate solutions.

 

Best regards,

Norman S.

Intel Customer Support Engineer


0 Kudos
Copy link
Sazirah
Employee
‎07-18-2024 08:25 PM
876 Views

Hi Swapna-,


Thank you for posting in Intel Ethernet Communities.


Regarding the issue reported, please be inform that we have our dedicated Intel Embedded team experts in this product Intel Xeon D. We will be moving this forum thread to the dedicated team and please give them some time as they will attend to your enquiry soon.


Alternatively, we recommend you to contact your Intel account representative (e.g. FAE) regarding this issue, or if you dont have any representative, you can contact nearest Intel authorized distributors to discuss on this issue.


Regards,

Sazzy_Intel


0 Kudos
Copy link
Diego_INTEL
Moderator
‎07-19-2024 07:17 PM
806 Views

Hello @Swapna-,

 

Thank you for contacting Intel Embedded Community.

 

As I understand, Phoenix SecureCore is the name of their UEFI, if your board uses AMI, I think it is not affected.

 

Just in case, it seems the mitigations are available, so you don't have to worry about, you may check with your vendor to get further help and if a firmware update should be performed.

https://www.phoenix.com/security-notifications/cve-2024-0762/

 

Best regards,

 

@Diego_INTEL 

0 Kudos
Copy link
Reply

Community support is provided Monday to Friday. Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.