TITLE: HP BIOS and System Firmware (S22)
VERSION: 02.11.00 REV: A PASS: 1
DESCRIPTION:
This package is used to update the supported firmware on HP Business Desktop
models with a S22 Family BIOS.
PURPOSE: Critical
SOFTPAQ NUMBER: sp139575
SOFTPAQ FILE NAME: sp139575.exe
SOFTPAQ MD5: 4210a14cb1d91fd8e8451dec551ac502
SUPERSEDES: sp138974
EFFECTIVE DATE: May 10, 2022
CATEGORY: BIOS - System Firmware
SSM SUPPORTED: Yes

PRODUCT TYPE(S):
Desktops
HARDWARE PRODUCT MODEL(S):
HP Engage Retail System
HP Engage Flex Mini Retail System
HP ProDesk 600 G6 Desktop Mini PC

OPERATING SYSTEM(S):
Microsoft Windows 10 All Editions (32-bit)
Microsoft Windows 10 All Editions (64-bit)
Microsoft Windows 11 version 21H2 (64-bit)
Windows 10 IoT Enterprise 2019 LTSC 64-bit
Windows 10 IoT Enterprise 2021 LTSC 64-bit

LANGUAGE(S): Global

ENHANCEMENTS:
This BIOS upgrade package also includes the following firmware versions:
SIO Firmware, version 09.08.17
Cypress Power Delivery (PD) Firmware (CCG5),Cypress - CCG5C: 5.9.0
Intel GOP EFI Driver, version 9.0.1107.A.11
NVIDIA vBIOS, version 90.16.3D.00.5E
Management Engine (ME) Firmware, version 14.1.65.1969
USB Type-C PD firmware FW 5.9.0


- Adds Windows11 operating system support.
- Update Intel RST PreOS driver to to 18.31.3.5434
- Enhancement to address security vulnerabilities CVE-2021-0091, CVE-2021-0156,
CVE-2021-0157, CVE-2021-0158.
- Enhancement to address security vulnerabilities CVE-2022-21166,
CVE-2022-21123, CVE-2022-21151, CVE-2022-0005.
- Enhancement to address security vulnerabilities CVE-2021-33122.
- Remove physical presence interface pops up when changing the "Intel Software
Guard Extensions (SGX)" setting from "Software control" to "Disable".
- Enhancement to address security vulnerabilities CVE-2022-23924,
CVE-2022-23925, CVE-2022-23926, CVE-2022-23927, CVE-2022-23928, CVE-2022-23929,
CVE-2022-23930, CVE-2022-23931, CVE-2022-23932, CVE-2022-23933, CVE-2022-23934.
- Enhancement to address security vulnerabilities CVE-2022-23953,
CVE-2022-23954, CVE-2022-23955, CVE-2022-23956, CVE-2022-23957, CVE-2022-23958.
- Adds a feature to control display of BIOS Admin login based on "BIOS
Administrator visible at power-on authentication" when Enhanced BIOS
Authentication Mode (EBAM) is set.
- Enhancement to address security vulnerabilities CVE-2022-0004.
- Enhancement to address security vulnerabilities CVE-2021-33123,
CVE-2021-33124, CVE-2021-33103.
FIXES:
- Fixes issue where Remote HP PC Diagnostics Execution Physical Presence
Interface continuous occur when some specific settings are applied at the same
time.
- Fixes issue where some F10 settings or help message display incomplete when
change to non-English language.
- Fixes an issue where system attempt to recover ME infinitely if customer
deploy recover image via 3-party application
- Fixes an issue where TBT firmware display different fromat with Setup Menu
during the BIOS update process via FUR (HP Firmware Update and Recovery).
- Fixes an issue where system cannot boot to OS while 3-rd party audio card
installed (Digigram VX222e)
- Fixes issue where system failure to boot after switching between two different
saved bootstores.
PREREQUISITES: NONE
HOW TO USE:
1. Download the file by clicking the Download or Obtain Software button and
saving the file to a folder on your hard drive (make a note of the folder where
the downloaded file is saved).

2. Double-click the downloaded file and follow the on-screen instructions.

Copyright (c) 2022 HP Development Company, L.P.