[SOLVED] Latest Gigabyte BIOS update

[kurdtnz]

I have the Gigabyte x570 I Aorus Pro wifi motherboard,(BIOS version F32.) and I was checking on their site and the latest BIOS (F35d) says:
''Major vulnerabilities updates, customers are strongly encouraged to update to this release at the earliest''

Does anyone know what these vulnerabilities are and has anyone with a Gigabyte board updated to this latest BIOS and experience any issues?

 

[Colif]

Has something do with research by some Sentinelone employees about secureboot , firmware exploits, etc

We're assuming Sentinelone is their security end point / vendor at Gigabyte since they got hacked twice.

https://www.overclock.net/cdn-cgi/i...ck.net/attachments/1638486115252-png.2535378/

F35 is a broken bios anyways, so who cares about these panic updates. It's not like this will 100% protect you because there's more security updates coming from Amd regarding agesa.

An example of this is agesa 1.2.0.5 which AMD had to update all SMU of all Ryzen models.

link

Are you on win 11? Are you using secure boot? I think vulnerabilities are in Secure boot.

I generally don't bother updating bios unless I am having problems. Currently on F20 running a 3600xt (Aorus X570 Elite WIFI), haven't seen need to update. Only other change in new bios is turning on tpm, been there, done that. Also enables secure boot... I might do that one day, win 11 hasn't complained At me yet

 

[kurdtnz]

link

Are you on win 11? Are you using secure boot? I think vulnerabilities are in Secure boot.

I generally don't bother updating bios unless I am having problems. Currently on F20 running a 3600xt (Aorus X570 Elite WIFI), haven't seen need to update. Only other change in new bios is turning on tpm, been there, done that. Also enables secure boot... I might do that one day, win 11 hasn't complained At me yet

Yeah, still using Windows 10, same here, dont like to update BIOS unless completely necessary.

 

[Colif]

I think that until you decide to get win 11, you probably don't need that update. I don't know enough about it to say if you ever need it or not.
I see update for my model as well. I might just wait.

 

[drea.drechsler]

I have the Gigabyte x570 I Aorus Pro wifi motherboard,(BIOS version F32.) and I was checking on their site and the latest BIOS (F35d) says:
''Major vulnerabilities updates, customers are strongly encouraged to update to this release at the earliest''

Does anyone know what these vulnerabilities are and has anyone with a Gigabyte board updated to this latest BIOS and experience any issues?

I think the "major vulnerability" it fixes is probably setting up with both Secure Boot and the fTPM enabled by default. Both of those do make for a much more secure system but you can do that yourself and still get the same protection. Problem is most people don't and setting up Secure Boot after the fact can be made very difficult if the boot drive partitioning scheme wasn't GPT at the outset.

The latest BIOS should also have the latest AGESA that fixes USB drop-out problems.

And lastly, AMD also improves memory compatibility with every AGESA. But I've found that changes with the memory initialization intended to improve compatibility with more memory kits often means I have to go back in and re-tweak timings to get the same stability and latency I had before.

If none of these are issues with your system you can probably forego the update.