As Intel, AMD, and other CPU manufacturers have started releasing CPU microcode (firmware) updates for processor models affected by the Meltdown and Spectre patches, those updates are trickling down to OEMs and motherboard vendors, who are now integrating these patches into BIOS/UEFI updates for affected PCs.
While not all vendors have patches available for vulnerable products right away, most have promised updates in the following months.
These BIOS/UEFI updates are part of a one-two punch to address the Meltdown and Spectre flaws that came to light at the start of the year.
Software patches at the operating system level have largely mitigated the Meltdown flaw, but both Microsoft and the Linux community said a firmware fix would be necessary to fully address the Spectre vulnerability.
Bleeping Computer users can use the links below to visit the download centers of their respective OEM provider and download BIOS/UEFI updates if their desktop, laptop, or notebook is using a vulnerable CPU and is listed as affected.
We'll try to keep the list up to date as much as possible. If your OEM vendor is not listed, or the download link goes 404 or is updated, don't hesitate to leave us a comment and we'll update the story as soon as possible.
|Acer||Acer only lists vulnerable desktop, notebook, and server products. Says it will release firmware updates for server products in March. No timeline for desktop and notebook products.|
|ASRock||The ASRock site is a mess. There's no central security advisory, and users will have to visit the "Latest BIOS Update" page and sift through the updates by hand. The good news is that there are a lot of recent BIOS releases containing Intel microcode updates dated after the Meltdown and Spectre disclosure.|
|ASUS||ASUS says it will release BIOS updates for affected products by the end of January.|
|Dell||BIOS updates are available for some Dell desktop, notebook, and server products. The Dell security advisory contains several other links to various products types. You can use this page as the central hub to search for what you need.|
|Fujitsu||BIOS updates are available for some products, but not all. The security advisory contains multiple links to various product types.|
|Gigabyte||Motherboard provider Gigabyte has released BIOS updates. Users will have to access the advisory, click on the motherboard series name in the list of affected table, and check for a recent BIOS update on each motherboard product's page.|
|HP||BIOS updates are available for almost half of the HP products listed as vulnerable.|
|Huawei||Huawei has only listed vulnerable products. Says an "investigation is still ongoing."|
|Intel||Intel has released updates for most NUC, Compute Stick, and Compute Card products.|
|Lenovo||Lenovo has the best advisory yet, with detailed tables for all affected products, including download links and upcoming BIOS download availability for each one.|
|LG||There is no security advisory for the Meltdown and Spectre flaws. If readers spot one, please let us know in the comments.|
|Panasonic||Panasonic said it aims to release BIOS updates for vulnerable PC models starting the end of the month and continuing through February and March.|
|Microsoft||Microsoft has released UEFI updates for Surface products.|
|MSI||MSI has released BIOS updates.|
|Toshiba||Toshiba has not released any BIOS/UEFI updates just yet. The company lists affected products and an approximate timeline when it hopes to have updates available.|
|Vaio||Some BIOS updates are available. More to follow.|