cancel
Showing results for 
Search instead for 
Did you mean: 

Driver file for TPM 2.0 addressing CVE-2019-1686 not provided as a Windows OS update

Ricky Tigg
Associate

Hello. Here are joined the specifications and troubleshooting information associated to the security processor as exhibited in Windows 11 22000.2124, in ASUS X507UA motherboard. In attachments, in the section TPM troubleshooter, the link tied to Learn more leads to st.com domain. The relevance of this link may be subject to interpretation in respect to whether it may be representative of the manufacturer of the involved component. I did not know how to interpret it.

It appears that the product software database maintained by Asus, which in available either on internet via the device support (asus.com domain) and MyAsus application (for Windows general-use-purpose OSs), has no available driver for download for this motherboard aimed to address CVE-2019-16863, that is presented as justification of the up-to-date recommendation. I understand that the acquisition of the respective file is a relevant quest in which this company may have a contribution. Regards.

5 REPLIES 5
Sarra.S
ST Employee

Hello @Ricky Tigg 

Could you please specify how your question is related to ST products/Tools.. so we can support you more efficiently

Also, could you clarify your request?  

Thank you! 

To give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

Ricky Tigg
Associate

Are we speaking the same language?

Sarra.S
ST Employee

Hello again @Ricky Tigg

If you believe that ASUS may have a contribution in addressing this issue, you may consider reaching out to their support team or submitting a support ticket to request further assistance.

To give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

Lina_DABASINSKAITE
Community manager
Community manager

Hello @Ricky Tigg , 

Adding to what Sara said. Please find more info here: TPM update - STMicroelectronics. Contacting ASUS would be next right step. 

BR,
Lina


In order to give better visibility on the answered topics, please click on 'Accept as Solution' on the reply which solved your issue or answered your question.

Perhaps like thinking that security flaws in IC's and motherboards are going to be fixed retrospectively?? Thoughts and prayers to you there.. ASUS would be your primary relationship here.

CVE-2019-16863 Detail
Description
STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL.

 

Tips, Buy me a coffee, or three.. PayPal Venmo
Up vote any posts that you find helpful, it shows what's working..