I am an engineer at System76. We have known about the ME vulnerability SA-00086 since the day Intel publicized it.

System76 has a wide array of models, all current models are affected. We are working on publishing fixes for ALL affected models over time.

For all affected laptop models, we have been working on disabling the ME with automatic updates:

Intel 6th Generation

• Bonobo (bonw11)
• Gazelle (gaze10)
• Gazelle (gaze11)
• Kudu (kudu2)
• Kudu (kudu3)
• Lemur (lemu6)
• Oryx (orxp1)
• Oryx (oryp2)
• Serval (serw9)

Intel 7th Generation

• Bonobo (bonw12)
• Galago (galp2)
• Gazelle (gaze12)
• Kudu (kudu4)
• Lemur (lemu7)
• Oryx (oryp3)
• Serval (serw9)

Intel 8th Generation

• Bonobo (bonw13)
• Galago (galp3)
• Lemur (lemu8)
• Serval (serw10)

For all affected desktop models, updates will need to be applied manually. We may not be able to disable the ME on these models. We are preparing updates and will provide more information when they are available:

Intel 6th Generation

• Meerkat (meer2)
• Ratel (ratp5)
• Sable (sabl6)
• Wild Dog (wilp12)

Intel 7th Generation

• Leopard (leow8)
• Meerkat (meer3)
• Wild Dog (wilp13)

If you have a model not listed, it is probably not affected by SA-00086. You can check for the vulnerability by running the Intel SA-00086 Detection Tool on Linux. If you find you are vulnerable, but are not among the listed models, please notify us immediately.