Skip to content

Instantly share code, notes, and snippets.

@kaihendry
Created September 19, 2022 11:08
Show Gist options
  • Save kaihendry/c01da77b87105acf117ec1847ac89cef to your computer and use it in GitHub Desktop.
Save kaihendry/c01da77b87105acf117ec1847ac89cef to your computer and use it in GitHub Desktop.
T14G3 wupdmgr get-updates
LENOVO 21CFCTO1WW
├─System Firmware:
│ │ Device ID: d96de5c124b60ed6241ebcb6bb2c839cb5580786
│ │ Summary: UEFI ESRT device
│ │ Current version: 0.1.17
│ │ Vendor: Lenovo (DMI:LENOVO)
│ │ Update State: Success
│ │ GUIDs: e40809b1-7d9f-4dc4-7c0f-8ace63b43687
│ │ 230c8b18-8d9b-53ec-838b-6cfc0383493a ← main-system-firmware
│ │ Device Flags: • Internal device
│ │ • Updatable
│ │ • System requires external power source
│ │ • Supported on remote server
│ │ • Needs a reboot after installation
│ │ • Cryptographic hash verification is available
│ │ • Device is usable for the duration of the update
│ │
│ └─ThinkPad T14 Gen 3 T16/P16s Gen 1 AMD:
│ New version: 0.1.23
│ Remote ID: lvfs
│ Release ID: 14536
│ Summary: Lenovo ThinkPad T14 Gen 3 T16/P16s Gen 1 AMD System Firmware
│ Licence: Proprietary
│ Size: 34.6 MB
│ Created: 2021-07-13
│ Urgency: High
│ Vendor: Lenovo
│ Release Flags: • Is upgrade
│ Description:
│ Lenovo ThinkPad T14 Gen 3 T16/P16s Gen 1 AMD System Firmware
│ This stable release fixes the following issues:
│ • Fix Lenovo AMD RMB platform DMIC audio Linux support
│ • Fix Enable L3 running BiosSetup_ChangeSettings causes machine BSOD
│ • Follow TCO Certified Generation 9 for Notebooks standard transition to dropped e-label and logo showing in boot display.
│ • Update Phoenix patch to fix Linux system hang after resume with HDD password set with MS.
│ • Fixed the issue of e-label not display
│ Some new functionality has also been added:
│ • Enable TPM WUFU support
└─UEFI dbx:
│ Device ID: 362301da643102b9f38477387e2193e57abaa590
│ Summary: UEFI revocation database
│ Current version: 190
│ Minimum Version: 190
│ Vendor: UEFI:Linux Foundation
│ Install Duration: 1 second
│ GUIDs: 14503b3d-73ce-5d06-8137-77c68972a341 ← UEFI\CRT_A9087D1044AD18F7A94916D284CBC01827CF23CD8F60B79072C9CAA1FEF4D649
│ 5971a208-da00-5fce-b5f5-1234342f9cf7 ← UEFI\CRT_A9087D1044AD18F7A94916D284CBC01827CF23CD8F60B79072C9CAA1FEF4D649&ARCH_X64
│ c6682ade-b5ec-57c4-b687-676351208742 ← UEFI\CRT_A1117F516A32CEFCBA3F2D1ACE10A87972FD6BBE8FE0D0B996E09E65D802A503
│ f8ba2887-9411-5c36-9cee-88995bb39731 ← UEFI\CRT_A1117F516A32CEFCBA3F2D1ACE10A87972FD6BBE8FE0D0B996E09E65D802A503&ARCH_X64
│ Device Flags: • Internal device
│ • Updatable
│ • Supported on remote server
│ • Needs a reboot after installation
│ • Only version upgrades are allowed
│ • Signed Payload
├─Secure Boot dbx:
│ New version: 217
│ Remote ID: lvfs
│ Release ID: 15179
│ Summary: UEFI Secure Boot Forbidden Signature Database
│ Variant: x64
│ Licence: Proprietary
│ Size: 13.8 kB
│ Created: 2020-07-29
│ Urgency: High
│ Vendor: Linux Foundation
│ Duration: 1 second
│ Release Flags: • Is upgrade
│ Description:
│ This updates the dbx to the latest release from Microsoft which adds insecure versions of grub and shim to the list of forbidden signatures due to multiple discovered security updates.
│ Issues: 309662
│ CVE-2022-34303
│ CVE-2022-34302
│ CVE-2022-34301
└─Secure Boot dbx:
New version: 211
Remote ID: lvfs
Release ID: 15178
Summary: UEFI Secure Boot Forbidden Signature Database
Variant: x64
Licence: Proprietary
Size: 13.5 kB
Created: 2021-04-29
Urgency: High
Vendor: Linux Foundation
Duration: 1 second
Release Flags: • Is upgrade
Description:
This updates the dbx to the latest release from Microsoft which adds insecure versions of grub and shim to the list of forbidden signatures due to multiple discovered security updates.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment