Lenovo XClarity Controller (XCC/BMC) Firmware
Lenovo XClarity Controller (XCC/BMC) Firmware
Available Drivers
File name
Size
Version
Operating System
Release Date
Severity
Options
Lenovo XClarity Controller (XCC/BMC) Firmware
134.749 MB
3.20
OS Independent
15 Aug 2024
Suggested
Change history (plain text)
lnvgy_fw_xcc_psi356b-3.20_anyos_noarch.chg
95.21 KB
3.20
OS Independent
15 Aug 2024
Suggested
View Checksum
Release notes (plain text)
lnvgy_fw_xcc_psi356b-3.20_anyos_noarch.txt
8.75 KB
3.20
OS Independent
15 Aug 2024
Suggested
View Checksum
Payload file
lnvgy_fw_xcc_psi356b-3.20_anyos_noarch.uxz
134.21 MB
3.20
OS Independent
15 Aug 2024
Suggested
View Checksum
XML file
lnvgy_fw_xcc_psi356b-3.20_anyos_noarch.xml
11.36 KB
3.20
OS Independent
15 Aug 2024
Suggested
View Checksum
Additional documentation/utility
lnvgy_fw_xcc_psi356b-3.20_anyos_noarch_extras.zip
436.98 KB
3.20
OS Independent
15 Aug 2024
Suggested
View Checksum
Description
System Support: ThinkSystem SR950
OS Support: Any OS
What's More
Change History
XClarity Controller Firmware Update
Change History
For installation instructions, see the file,
lnvgy_fw_xcc_3.20_psi356b_anyos_noarch_installationtips.pdf, which is provided
in the downloaded software package. When installing firmware, Lenovo
recommends that you use the UpdateXpress System Pack (UXSP) bundle.
==================================================
Version 3.20 PSI356B [Critical]
Release date: 7/2024
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Addresses:
CVE-2023-4016, CVE-2023-6935, CVE-2023-6937, CVE-2023-27349, CVE-2023-29491, CVE-2023-45918
CVE-2023-48795, CVE-2023-50229, CVE-2023-50230, CVE-2023-50495, CVE-2024-0901, CVE-2024-2961
CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602, CVE-2020-10531, CVE-2021-3345
CVE-2021-33560, CVE-2023-4156, CVE-2023-5981, CVE-2023-28484, CVE-2023-29469, CVE-2023-39615
CVE-2023-45322, CVE-2023-50471, CVE-2023-50472, CVE-2023-52425, CVE-2023-52426, CVE-2024-0553
CVE-2024-0567, CVE-2024-0853, CVE-2024-6387, CVE-2024-25062, CVE-2024-28757, CVE-2024-28835
CVE-2024-39894
Addresses LEN-167041
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem of connecting to XCC which is installed a SSL certificate with SAN (Subject Alternative Name)
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 3.11 PSI354A [Suggested]
Release date: 4/2024
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Addresses LEN-156781
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
None
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 3.10 PSI352N [Suggested]
Release date: 3/2024
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
CVE-2023-51767 CVE-2023-51385 CVE-2023-51384 CVE-2023-48795 CVE-2023-38408 CVE-2023-28531 CVE-2023-25136
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem that ESXi 7.0 or later can't read the asset tag
Fixed a problem that new DHCP IP address was not updated to LXCA and nodes go to offline
Fixed a problem that creating virtual drive through xcc web interface will fail
Fixed a problem that updating the LAN over USB IP through XCC web interface may fail
Fixed a problem that openning remote control will fail after WEB over HTTPS port is changed
Fixed a problem that LDAP authenitication will fail with custom LDAP port
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Supported IPMI command to set fan speed and keep speed after AC cycle or OS reboot
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.92 PSI352H [Suggested]
Release date: 9/2023
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
None
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
None
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added support in Redfish to manage the EKMS cache key and polling function
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.90 PSI352F [Suggested]
Release date: 8/2023
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
CVE-2023-27534 CVE-2023-27538 CVE-2023-27537 CVE-2023-28322 CVE-2023-28319 CVE-2023-28321
CVE-2023-28320 CVE-2023-27536 CVE-2023-32067 CVE-2023-31124 CVE-2023-31147 CVE-2023-31130
CVE-2023-32681 CVE-2023-2650 CVE-2023-32233 CVE-2023-2513
Fixed PSIRT issue of LEN-127392/LEN-119523
Fixed a privilege escalation problem in the Redfish interface
Fixed a privilege escalation problem that may be triggered by an HTTP request smuggling attack
Fixed a SQL command injection problem
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem that Identify LED state can not be changed without refresh inventory in LXCA
Fixed a problem that snmpwalk run slows if server attached to a enclosure
Fixed a problem that using LDAP server for authentication only mode
Fixed a problem that SNMP trap may not received
Fixed a problem that LXCO can not show machine power usage
Fixed a problem that user can't use SSH key to login to XCC
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.80 PSI350I [Suggested]
Release date: 5/2023
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
CVE-2022-40674 CVE-2022-43680 CVE-2022-37434 CVE-2018-25032 CVE-2021-41990 CVE-2021-41991
CVE-2021-45079 CVE-2022-40617 CVE-2022-35737 CVE-2021-45346 CVE-2021-36690 CVE-2022-44638
CVE-2023-0401 CVE-2023-0286 CVE-2023-0217 CVE-2023-0216 CVE-2023-0215 CVE-2022-4450
CVE-2022-4304 CVE-2022-4203 CVE-2023-0401 CVE-2022-29458 CVE-2022-29824 CVE-2022-40304
CVE-2022-40303 CVE-2021-46848 CVE-2021-4209 CVE-2022-2509 CVE-2022-25310 CVE-2022-25309
CVE-2022-25308 CVE-2022-42010 CVE-2022-42011 CVE-2022-42012 CVE-2023-23916 CVE-2023-23915
CVE-2023-23914 CVE-2022-43552 CVE-2022-43551 CVE-2022-42916 CVE-2022-42915 CVE-2022-35260
CVE-2022-35252 CVE-2022-32221 CVE-2022-32208 CVE-2022-32207 CVE-2022-32206 CVE-2022-32205
CVE-2022-30115 CVE-2015-20107 CVE-2019-12900 CVE-2018-25032 CVE-2022-26488 CVE-2016-3189
CVE-2017-20052 CVE-2022-45061 CVE-2022-42919 CVE-2020-10735 CVE-2021-28861 CVE-2022-36227
CVE-2022-26280 CVE-2022-38533 CVE-2022-4285 CVE-2021-45078 CVE-2022-35977 CVE-2022-35951
CVE-2022-33105 CVE-2022-31144 CVE-2023-26607 CVE-2020-36516 CVE-2022-4662 CVE-2023-1095
CVE-2022-43750 CVE-2022-2978 CVE-2022-2964 CVE-2022-1729 CVE-2022-20158 CVE-2022-1184
CVE-2022-1016 CVE-2021-3672 CVE-2022-4904 CVE-2020-8277
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem that ISO images may fail to mount through Redfish API
Fixed a problem that the LDAP group filter does not work as expected
Fixed a problem that the LXCA config pattern may fail to activate
Fixed a problem that incorrect power state is shown thru Redfish API
Fixed a problem that XCC mishandle some special characters in the email hostname of the alert recipient
Fixed a problem that no data was shown in the HTML file exported from XCC webGUI
Fixed a problem that the system may reboot repeatedly after updating UEFI firmware
Fixed a problem that LXCA may fail to get inventory information from XCC via Redfish API
Fixed a problem that LXCA may fail to get power status from XCC
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added support in Redfish to configure trespass message and enablement of using DNS to discover LXCA
Added support of service data log with configurable log content
Added support in Redfish to configure XCC TLS Cipher configuration
Added support to clear CMOS remotely thru Redfish API and OneCLI command
Added support to get minimum, maximum and default strip size of RAID controller thru Redfish API
Added support to show system FPGA firmware version on XCC web GUI
Added support to get thru Redfish API that if system boot stops waiting for power on password or UEFI password input
Added OOB management support for Napatech NT100A01 and NT200A02 adapters
Added inventory support for non-raid M.2 devices thru Redfish
Added setting option to cache SED key from External Key Management Server
Added support of new Redfish standard host interface
Added support of Call Home function
Added support to enable External Key Management for Broadcom RAID controller thru Redfish API
Added support of Subject Alternative Name (SAN) in CSR
Extended SNMP v1 and v2c trap destination to three
Fixed a problem that some generic drives may cause reteated inventory processing log in XCC
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
Update FPGA version to v2.42
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.75 PSI348S [Critical]
Release date: 3/2023
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Fixed the problem that the user privilege is not granted properly through LDAP
Fixed one privilege escalation problem in SSH CLI
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
None
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.70 PSI348Q [Suggested]
Release date: 11/2022
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Fixed PSIRT issue of LEN-99936
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem that email alert fails to send to Google SMTP relay service
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.60 PSI348O [Suggested]
Release date: 9/2022
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
CVE-2020-15180 CVE-2020-14812 CVE-2020-14765 CVE-2021-2022 CVE-2020-28912
CVE-2020-2814 CVE-2020-2812 CVE-2020-2752 CVE-2021-29921 CVE-2021-3177
CVE-2020-27619 CVE-2021-3737 CVE-2013-0340 CVE-2018-25032 CVE-2022-0391
CVE-2021-3733 CVE-2021-23336 CVE-2021-3426 CVE-2021-4189 CVE-2022-24735
CVE-2022-24736 CVE-2022-27239 CVE-2022-29869 CVE-2022-1292 CVE-2022-0778
CVE-2021-4160 CVE-2022-29458 CVE-2021-22945 CVE-2022-22576 CVE-2022-27782
CVE-2022-27775 CVE-2022-27781 CVE-2021-22946 CVE-2022-27776 CVE-2021-22947
CVE-2022-27774 CVE-2021-30560 CVE-2022-1966 CVE-2022-25258 CVE-2022-0494
CVE-2022-30594 CVE-2022-24958 CVE-2022-1011 CVE-2022-25375 CVE-2022-24448
CVE-2022-1012 CVE-2022-32250 CVE-2022-28356 CVE-2020-11724
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem where XCC may not display power utilization after updating XCC and UEFI firmware
Fixed a problem where XCC may fail to respond to Redfish request from LXCA and cause XCC is shown offline on LXCA
Fixed a problem where multi-bit CE event FQXSFMA0026G may not generate email alert if alert category "All other information/system events" is not selected
Fixed a problem where PSU FW update will failure due to PSU VPD not recognize
Fixed a problem of LXCA user error which may cause XCC to triggere rebooting the server node
Fixed a problem of LXCA fails to manage XCC with managed authentication
Fixed a problem that XCC alert email may not have information about From: or Subject:
Fixed a problem that LXCA may fail to subscribe to XCC to get event alerts
Fixed a problem that SNMP MIB file doesn't support SNMP v2c trap
Fixed a problem that PCIe adapter inventory may not be shown correctly in XCC
Fixed a problem that login to node XCC from CMM with CMM account and credential may fail
Fixed a problem that firmware update throrugh LXCA with "Prioritized Activation" may fail
Fixed the problem of PIROM information shows up issue
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Enabled encryption key generated from SKLM server to be ACTIVE state with Vormetric Data Security Manager
Upgraded Redfish support to 2021.4 schema bundle and 1.15.0 spec
Changed to disable the sftp service in XCC by default
Added a new status in Redfish for firmware is updated but not activated yet
Added support of out of band management for SAS/SATA HDD and SSD drives with generic firmware
Added out of band RAID configuration support thru XCC for ThinkSystem RAID 4350, 5350 and 9350 adapters
Refined the error message for firmware update failure if target hardware device is not present
Enable 440-8e HBA on SR950
Enable 440-8i HBA new PCB version on SR950
Enable 440-16i HBA new PCB version on SR950
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
It is a must to set SNMP settings for user accounts if enable SNMP agent for those user accounts
==================================================
Version 2.51 PSI346M [Suggested]
Release date: 7/2022
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
None
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a specific SR950 system issue, where XCC rebooted spontaneously.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.50 PSI346L [Suggested]
Release date: 6/2022
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
CVE-2021-41617, CVE-2021-45078, CVE-2021-3487, CVE-2021-20197, CVE-2020-16590,
CVE-2020-16591, CVE-2020-16592, CVE-2020-16593, CVE-2020-16599, CVE-2021-20294,
CVE-2021-43618, CVE-2021-43527, CVE-2022-23218, CVE-2022-23219, CVE-2018-25020,
CVE-2020-16119, CVE-2021-40490, CVE-2020-3702, CVE-2021-3896, CVE-2021-28715,
CVE-2021-28714, CVE-2021-28713, CVE-2021-28712, CVE-2021-28711, CVE-2021-3753,
CVE-2021-3752, CVE-2021-20321, CVE-2021-20320, CVE-2021-39633, CVE-2021-4083,
CVE-2021-44733, CVE-2021-45095
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Corrected the alert severity of event FQXSPIO0000I
Fixed a problem that CPU power remains capped after inlet temperature recovers from overtemp
Fixed a problem that LXCA may fail to update add-in card firmware which requires BMU mode
Fixed a problem that XCC VLAN settings are not restored when run XCC restore function
Fixed a problem that OneCLI setting IMM.SNMPAgentPortControl may change after updating XCC firmware
Fixed a problem that XCC may continuously reset itself every 5 minutes when XCC runs in backup
Fixed a problem that commonEventID is missed in the SNMP trap message
Fixed a problem that after set " EngineID" of SNMP v3 in the CLI, the web side is not synchronized
Fixed a problem that Broadcom RAID controllers may occasionally disappear from XCC Inventory
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added the support of SNMPv2c trap
Added an option to allow backup XCC firmware auto sync with primary XCC
Added support to query if UEFI administrator password and power-on password are set thru Redfish API
Added support of NMVE drives with supplier generic firmware
Added support to allow configuration of SNMPc3 engine ID
Added support to mount virtual media from HTTP server on XCC web
Added support to assert and de-assert remote physical presence with OneCLI batch and restore command
Enabled LXCA to learn and configure RAID settings thru LXPM
Added support to automatically capture OS failure screen triggered by fatal hardware error
Security enhancements in support of ISCCC certification
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.40 PSI344J [Critical]
Release date: 12/2021
==================================================
This is the suggested release of the product listed below.
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2021-38300, CVE-2021-20317, CVE-2021-41864, CVE-2021-38199, CVE-2021-3679, CVE-2021-33909,
CVE-2021-33574, CVE-2021-38604, CVE-2021-36976, CVE-2021-41099, CVE-2021-32762, CVE-2021-32687,
CVE-2021-32675, CVE-2021-32628, CVE-2021-32627, CVE-2021-32626, CVE-2021-32765
-------------------------------------------------------------------------
4.0 Other Fixes
-------------------------------------------------------------------------
Fixed a problem where installed adapter might be missed in XCC inventory if Option ROM is disabled
Fixed a problem where NTP IP addresses from the 2nd one may not reflect in OneCLI "config show" command
Fixed a problem where false alert of "Slot Or Connector sensor, Fault Status asserted was asserted" may report on SMM
Fixed a problem where User/LDAP global settings on XCC web are not shown properly with IE11 browser.
Fixed a problem where XCC may not report the CPU fatal error event properly
Fixed a problem that unable to create a user with name of 16 characters with OneCLI command
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Enhanced the user and IP address information in XCC audit log
Enhanced XCC web security for replay attack protection
Added the support of Cryptography Settings on XCC web
Added the support of Redfish Simple Update of firmware from HTTP/HTTPS server
Added the support of new HBA adapters 4350-8i and 4350-16i; and new RAID adapters 5350-8i, 9350-8i 2GB and 9350-16i 4GB
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.32 PSI342N [Critical]
Release date: 11/2021
==================================================
This is the suggested release of the product listed below.
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem that if customers' LDAP server enables unauthenticated binding (which is unsecure and recommend to disable) and allows non-existed user to bind, XCC will allow the same non-existed user to login with read-only access after update to XCC version 2.30.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.30 PSI342J [Suggested]
Release date: 9/2021
==================================================
This is the suggested release of the product listed below.
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2021-29154, CVE-2021-23133, CVE-2021-29650, CVE-2021-29265, CVE-2021-28688,
CVE-2021-30002, CVE-2021-29647, CVE-2021-3483, CVE-2021-22876, CVE-2021-22890,
CVE-2021-3537, CVE-2021-3518, CVE-2021-3517, CVE-2020-24977, CVE-2020-7595,
CVE-2019-20388, CVE-2019-19956, CVE-2021-20227, CVE-2020-15358, CVE-2020-13871,
CVE-2020-13632, CVE-2020-13631, CVE-2020-13630, CVE-2020-13435, CVE-2020-13434,
CVE-2020-11656, CVE-2020-11655, CVE-2020-9327
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where servers may power off during firmware update by LXCA when SEL is full and with critical temperature event entries.
Fixed a problem where OneCLI batch command may fail when configuring XCC LDAP user group settings.
Fixed a problem where LDAP user login may fail if LDAP users and groups are across different domain controllers.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added the support to clear IPMI SEL log in Redfish.
Enable LXCA to use third party password to manage XCC.
Added the support to overwrite the current LDAP trust certificate when uploading certificate to a slot with existing certificate.
Extended the SNMP trap destination from one to three.
Added the support of "SpanDepth" and "DiskPerSpan" for RAID10 in Redfish.
Eliminated the need of license key when enable SKLM in XCC.
Added the support to enable auto wrapping of IPMI SEL.
Added the option to display cn/name or sAMAccountName as user acocunt for LDAP user on XCC webGUI.
Added the support of Xilinx Alveo U50.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.20 PSI340K [Suggested]
Release date: 6/2021
==================================================
This is the initial release of the product listed below.
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X12
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
FIX:
Describe the fix and the condition that it resolves.
Security incident: LEN-xxxx
CVE-2020-10029, CVE-2016-10228, CVE-2021-27645, CVE-2021-3326, CVE-2020-27618, CVE-2020-29562, CVE-2019-25013, CVE-2021-3347,
CVE-2021-28972, CVE-2021-3178, CVE-2020-27825, CVE-2021-27365, CVE-2021-3348, CVE-2021-27364, CVE-2021-27363, CVE-2020-29569,
CVE-2020-29568, CVE-2021-21309, CVE-2021-23336, CVE-2021-3177, CVE-2019-20388, CVE-2020-24977, CVE-2020-7595, CVE-2020-10531,
CVE-2021-3450, CVE-2021-3449, CVE-2021-23841, CVE-2021-23840, CVE-2020-1971, CVE-2020-35507, CVE-2020-35496, CVE-2020-35495,
CVE-2020-35494, CVE-2020-35493, CVE-2019-17451, CVE-2019-17450, CVE-2019-14444, CVE-2019-14250, CVE-2019-12972, CVE-2019-9077,
CVE-2019-9076, CVE-2019-9075, CVE-2019-9075, CVE-2019-9074, CVE-2019-9073, CVE-2019-9072, CVE-2019-9071, CVE-2019-9070,
CVE-2018-1000876, CVE-2021-28041, CVE-2020-8286, CVE-2020-8285, CVE-2020-8284, CVE-2020-8231, CVE-2019-15601, CVE-2020-12762,
CVE-2021-27219, CVE-2021-27218, CVE-2020-35457, CVE-2021-3156
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where Redfish service may restart unexpectedly.
Fixed a problem where some user global settings are not reflected in OneCLI after change from XCC Web GUI.
Fixed a problem that there might be alert of CPU degraded after AC cycle.
Fixed a problem when XCC report overtemp errors from pcie slot with intel p4600 nvme adapter.
Fixed a problem when Memory Mirror Fail-over error, XCC report an invaild log.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Changed Ethernet-Over-USB to be disabled after reset to factory default.
Added the support of JAVA client for XCC remote console.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.14 PSI338K [Suggested]
Release date: 4/2021
==================================================
This is the initial release of the product listed below.
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X12
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None.
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
None.
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where firmware update with Delayed activation on LXCA may fail.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
None.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None.
----------------------------
7.0 Limitations
----------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.14 PSI338I [Suggested]
Release date: 3/2021
==================================================
This is the initial release of the product listed below.
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X12
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where the first email alert after AC cycle doesnât show XCC name in the email subject.
Fixed a problem of unexpected system power off during PSU firmware update.
Fixed a problem where XCC may not pass the product description to CMM hence it is not shown on CMM with SN550 and SN850.
Fixed a problem of handling large HTTP messages in Remote Console functionality.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Upgrade Redfish schema bundle to 2020.1 and spec to 1.10.0.
Added the support of the link between NetworkDeviceFunction resource and EthernetInterface resource in Redfish API.
Added the support of HotSpare drive and StripSize properties in storage Redfish APIs.
Changed to disable CIM after reset to factory default.
Added the support for CSR (certificate signing request) generation with RSA algorithm.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
FPGA version upgraded to SYS6F0233.bin
----------------------------
7.0 Limitations
----------------------------
If downgrade XCC versions from PSI338I prior to before, please do a AC cycle to avoid the potential risk that XCC may continuously reset itself every 5 minutes
==================================================
Version 2.10 PSI336J [Suggested update]
Release date: 11/2020
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
None
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2020-1751, CVE-2020-1752, CVE-2020-6096, CVE-2020-13974, CVE-2020-15780, CVE-2020-16166, CVE-2020-10751, CVE-2020-10757,
CVE-2019-20810, CVE-2020-10732, CVE-2020-15393, CVE-2020-14356, CVE-2020-24394, CVE-2020-25212, CVE-2020-10781, CVE-2020-26116,
CVE-2020-8492, CVE-2019-8904, CVE-2019-8905, CVE-2019-8906, CVE-2019-8907, CVE-2019-18218, CVE-2020-11655, CVE-2020-9327,
CVE-2020-13631, CVE-2020-15358, CVE-2020-13632, CVE-2020-13435, CVE-2020-13434, CVE-2020-13630, CVE-2020-11656, CVE-2018-1000877,
CVE-2018-1000878, CVE-2018-1000879, CVE-2018-1000880, CVE-2019-1000019, CVE-2019-1000020, CVE-2019-18408, CVE-2019-20509,
CVE-2018-14550, CVE-2020-13777, CVE-2020-11501, CVE-2020-13817, CVE-2018-8956, CVE-2020-11868, CVE-2020-15025, CVE-2020-14145,
CVE-2019-16905, CVE-2020-14155, CVE-2020-12762, CVE-2018-12404, CVE-2018-12384
-------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where TIMETICKS got from XCC SNMP was reset to 0 which may trigger management software like SolarWinds report false alarm of XCC reset. (Bz#213001)
Fixed a problem where One side of tray of SD650 may report power reading incorrectly. (Bz#211150)
Fixed a problem where the Japanese keyboard CapsLock not work properly in XCC Remote Console. (Bz#210538)
Fixed a problem where XCC email alert may fail after updating. (Bz#206306)
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added LDAP support for eDirectory LDAP server v9.4. (RMK-3624)
Added the support of single sign-on from LXCA to XCC. (RMK-1195)
Added the support to limit XCC to have one active session per user. (RMK-3594)
Added the support to use blue ID LED fast blink to indicate SE350 is not activated. (RMK-3133)
Added the support of Thales KeySecure and CipherTrust remote SED key Manager in XCC. (RMK-3978)
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
None
----------------------------
7.0 Limitations
----------------------------
None
==================================================
Version 2.00 PSI334P [Suggested update]
Release date: 9/2020
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2016-10735, CVE-2018-14040, CVE-2018-14042, CVE-2018-20676, CVE-2018-20677, CVE-2019-8331,
CVE-2019-10768, CVE-2019-14863, CVE-2020-7676, CVE-2020-7656, CVE-2020-11023, CVE-2020-11022,
CVE-2019-13488, CVE-2019-11358, CVE-2020-12114, CVE-2020-12464, CVE-2020-12826, CVE-2020-13413,
CVE-2020-12770, CVE-2020-1751, CVE-2020-1752, CVE-2020-6096, CVE-2015-8985, CVE-2019-20388, CVE-2020-7595
-------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where expiration date of LDAP trust certificate shows incorrectly if the expiration date is after Jan 2038.
Fixed a problem where 'Shift' key is not handled correctly in XCC remote console.
Fixed a problem where date/time setting is not shown correctly on XCC WebGUI with IE11.
Fixed a problem where inventory of drives attached to HBA 430i may be missed on XCC WebGUI.
Fixed a problem where OneCLI will show system SN as left-aligned while it is right-aligned on SE350.
Fixed a problem of excessive false "Drive has been added/removed" events in XCC.
Fixed a problem where 'sysName' of SNMP is not in sync with XCC hostname.
Fixed a problem where BMC access is no longer available on dedicated port after failover to the shared NIC.
Fixed a problem where Processor 1&2 are operating in a Degraded State.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added the support to show inventory information of NVIDIA GPU.
Added an option to enable audit log for IPMI set commands.
Added the support to report audit log for drive encryption change on SE350.
Added the support to report warning alert for LOM link status from up to down.
Added the support to show remaining life of SSD drives in XCC.
Added the support of standard LogEntry in Redfish.
Added the support to upgrade PSU firmware via Redfish.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
The weak crypto algorithms diffie-hellman-group14-sha1 and hmac-sha1 are removed from the XCC SFTP configuration. If âkey exchange failureâ is observed while accessing XCC with OneCLI tool, OneCLI will have to be upgraded.
FPGA version upgraded to 4.8.
----------------------------
7.0 Limitations
----------------------------
None
==================================================
Version 1.90 PSI332T [Suggested update]
Release date: 5/2020
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2019-19126, CVE-2019-10220, CVE-2019-19767, CVE-2019-19037, CVE-2019-5489, CVE-2019-1551, CVE-2019-17498, CVE-2019-18197,
CVE-2019-19956, CVE-2019-5544, CVE-2018-10103, CVE-2018-10105, CVE-2018-14461,CVE-2018-14462, CVE-2018-14463, CVE-2018-14464,
CVE-2018-14465, CVE-2018-14466, CVE-2018-14467, CVE-2018-14468, CVE-2018-14469, CVE-2018-14470, CVE-2018-14879, CVE-2018-14880,
CVE-2018-14881, CVE-2018-14882, CVE-2018-16227, CVE-2018-16228, CVE-2018-16229, CVE-2018-16230, CVE-2018-16300, CVE-2018-16301,
CVE-2018-16451, CVE-2018-16452, CVE-2019-15161, CVE-2019-15162, CVE-2019-15163, CVE-2019-15164, CVE-2019-15165, CVE-2019-15166
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a syntax error in XCC SNMP MIB.
Reword the verbose login audit message to make more clear to users.
Fixed a Japanese translation error on XCC web GUI.
Fixed a problem where the storage device inventory on XCC might be incorrect with HBA 430-8i.
Fixed a problem that restore XCC backup file to a different system or a new replaced board may cause XCC MAC changed unexpectedly and cause initialization failure on Flex node.
Fixed a problem of incorrect MAC address shown in pause frame which may cause switch reports MAC error.
Fixed a problem on SE350 that XCC Web does not show inventory for non-RAID M.2 NVMe drives.
Fixed a problem that SSID/password of embedded switch on SE350 may not be saved correctly on XCC web GUI.
Changed the default temperature unit from Fahrenheit to Celsius on XCC web GUI.
Fixed a problem that CMM cannot apply or read power capping settings from Flex nodes.
Fixed a problem that if a user set with "Third-party Password", when attempting to login with empty password, XCC would allow to change password.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added the support to allow to retain network or user accounts settings when reset to default from OneCLI.
Added the Redfish support to retrieve the maintenance history log.
Added the Redfish support for telemetry data of CPU and memory utilization.
Added the support of event notification for UEFI setting changes.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.80 PSI330N [Suggested update]
Release date: 2/2020
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2019-13115, CVE-2018-20784, CVE-2018-16884, CVE-2018-20669, CVE-2018-9516, CVE-2018-3819, CVE-2019-11487, CVE-2019-11599,
CVE-2019-6133, CVE-2018-10840, CVE-2018-10877, CVE-2018-10876, CVE-2018-10882, CVE-2018-17972, CVE-2019-12378, CVE-2019-12381,
CVE-2019-9213, CVE-2018-16862, CVE-2018-18397, CVE-2019-11833, CVE-2019-12819, CVE-2019-5489, CVE-2018-17182, CVE-2018-18281,
CVE-2018-20169, CVE-2019-11477, CVE-2019-11478, CVE-2019-11479, CVE-2019-8912, CVE-2019-8980, CVE-2019-13272, CVE-2019-10639,
CVE-2018-10883, CVE-2018-20856, CVE-2019-10638, CVE-2018-3693, CVE-2017-5753, CVE-2017-5715, CVE-2018-5391, CVE-2019-15919
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where PSU AC and DC power queries via IPMI intermittently report zero watts.
Fixed a problem that no explicit prompt message to alert the user to change password on first access for a newly created account.
Fixed a problem where remote console may display black screen on XCC Web.
Fixed a problem where XCC intermittently does not log the CPU degrade recovery message.
Fixed a problem where the XCC configuration backup filename has extra spaces.
Fixed a problem where the custom privilege group created on CMM may not allow to use remote console on XCC Web on SN550 and SN850.
Fixed a problem where access to XCC via SSH may fail.
Fixed a problem where the PCIe adapter inventory data may be inconsistent between LXCA and XCC.
Fixed a problem where informational event of unqualified DIMM shown in Active Events.
Fixed a problem where LXPM may be displayed as abnormal drives in OS after installed OS via LXPM.
Fixed a problem where erroneous message in event log indicating as 'DIMMs Disabled has asserted' when SMBIOS does not contain an end-of-file type field.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added the support to alert user if the NTP server is unreachable and causing XCC time not able to sync with NTP.
Added the support to display FRU Part Number of motherboard, backplane and riser card on XCC Web.
Added the support to set UEFI Admin password via XCC command line.
Added the support to extend the XCC password length to 32 characters.
Added the support to extend the Distinguished Name length to 300 characters.
Added the support of basic RAID configuration with standard Redfish schemas.
Added the support to show XCC event for UEFI Memory Test.
Changed the severity level of RAID battery error event to Error.
Added the support of Redfish 1.8.0 and new properties support.
Added the Redfish support to mount/unmount Virtual Media thru NFS, CIFS (Samba) and HTTPS.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.71 PSI328N [Suggested update]
Release date: 12/2019
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where after update to XClarity Controller version PSI328M 1.70,
server front panel USB 2.0 port may not automatically switch to host when power on after
AC cycle if this front panel USB2.0 port is set to Share Mode. With version PSI328N 1.71,
user can use ID button or XClarity Controller web to switch this front panel USB2.0 port
to host if seeing this problem.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.70 PSI328M [Critical update]
Release date: 11/2019
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2016-0682, CVE-2016-0689, CVE-2016-0692, CVE-2016-0694, CVE-2016-3418, CVE-2016-7056, CVE-2016-8283, CVE-2017-11164,
CVE-2017-14166, CVE-2017-14501, CVE-2017-14502, CVE-2017-14503, CVE-2017-15396, CVE-2017-15422, CVE-2017-16231, CVE-2017-3135,
CVE-2017-3136, CVE-2017-3137, CVE-2017-3138, CVE-2017-3140, CVE-2017-3141, CVE-2017-3142, CVE-2017-3143, CVE-2017-3144,
CVE-2017-3145, CVE-2018-1000876, CVE-2018-1000877, CVE-2018-1000878, CVE-2018-1000879, CVE-2018-1000880, CVE-2018-14038, CVE-2018-14618,
CVE-2018-14621, CVE-2018-14647, CVE-2018-15919, CVE-2018-16839, CVE-2018-16840, CVE-2018-16842, CVE-2018-16890, CVE-2018-17794,
CVE-2018-17985, CVE-2018-18065, CVE-2018-18066, CVE-2018-18309, CVE-2018-18483, CVE-2018-18484, CVE-2018-18605, CVE-2018-18606,
CVE-2018-18607, CVE-2018-18700, CVE-2018-18701, CVE-2018-19519, CVE-2018-19931, CVE-2018-19932, CVE-2018-20002, CVE-2018-20346,
CVE-2018-20406, CVE-2018-20505, CVE-2018-20506, CVE-2018-20671, CVE-2018-20679, CVE-2018-20685, CVE-2018-20843, CVE-2018-5733,
CVE-2018-5740, CVE-2018-5741, CVE-2019-1000019, CVE-2019-1000020, CVE-2019-11068, CVE-2019-12749, CVE-2019-12900, CVE-2019-1559,
CVE-2019-3822, CVE-2019-3823, CVE-2019-3829, CVE-2019-3855, CVE-2019-3856, CVE-2019-3857, CVE-2019-3858, CVE-2019-3859,
CVE-2019-3860, CVE-2019-3861, CVE-2019-3862, CVE-2019-3863, CVE-2019-5436, CVE-2019-5747, CVE-2019-6109, CVE-2019-6110,
CVE-2019-6111, CVE-2019-7146, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664, CVE-2019-7665, CVE-2019-8457, CVE-2019-8936,
CVE-2019-9636, CVE-2019-9740, CVE-2019-9947, CVE-2019-9948, CVE-2017-17426, CVE-2018-19591, CVE-2018-6551, CVE-2019-6488,
CVE-2019-7309, CVE-2009-5155, CVE-2016-10739, CVE-2019-9169, CVE-2018-17182, CVE-2019-8912, CVE-2018-18281, CVE-2019-11477,
CVE-2019-8980, CVE-2019-11478, CVE-2019-11479, CVE-2018-20169, CVE-2019-6195
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where cannot unmount the RDOC ISO with Chinese file name.
Fixed a problem where on SR250 XCC may not record memory changed events in maintenance history.
Fixed a problem of unexpected event of Sensor ME status has transitioned to critical from a less severe state.
Fixed a problem where XCC may become offline unexpectedly in LXCA.
Fixed a problem where the SNMP requests to XCC may timeout and fail.
Fixed a problem where XCC hostname cannot start with a digit.
Fixed a problem where XCC WebGUI does not check unallowed umlaut characters in password.
Fixed a problem where XCC will lose network connectivity after execute IPMI command to set the gateway MAC address to 00:00:00:00:00:00.
Fixed a problem where XCC may report Audit Log full when the actual audit log entries are small on XCC web.
Fixed a problem where XCC SNMP MIB files may fail to be imported.
Fixed a problem where description is wrong with email recipients when system name is blank on XCC WebGUI.
Fixed a problem where system product name is not changed after set via OneCLI tool with setting SYSTEM_PROD_DATA.SysInfoProdIdentifier.
Fixed a problem where XCC may become slow response or reset unexpectedly.
Fixed a problem that when LAN-over-USB is disabled there is still event log showing this interface is active.
Fixed a problem where drive is incorrectly marked as fault in the response of IPMI Chassis Status command.
Fixed a problem where XCC may report incorrect external drive errors with DE series external storage.
Fixed a problem where XCC had no response when vm-support collection was initiated via SSH.
Fixed a problem where XCC may report false alert of power loss of external storage.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added support to obtain hostname from DHCP server.
Enhanced security to by default enable the setting of Force to change default account password on next login, and disable
IPMI-over-LAN, both changes will take effect after reset XClarity Controller to default.
Added the support to allow XCC user to select which LXCA instance should manage it.
Added the Machine Type Model and Serial Number of external drive enclosure into XCC event messages.
Reduced non-serviceable event to stop the audit log from filling up quickly.
Added the Redfish support of telemetry service with metric reports and SSE.
Added the Redfish support of 2019.1 schema and registries.
Added the Redfish support of firmware update with push method and enhanced the firmware update messages.
Added the Redfish support to get the PSU firmware inventory.
Added the Redfish support of IO adapter settings with Bios schema.
Added the Redfish support of Enclosure Chassis object on blade and dense systems.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
Autopromot command is no longer existed in XCC CLI.
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.60 PSI326G [Critical update]
Release date: 7/2019
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where OneCLI did not work after restarting XCC.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added TCP as an option for SYSLOG event alerts in XCC.
Added support to set bootable for PD/VD in XCC CLI console.
Added support to toggle M.2 controller logging.
Added support to enable/disable IPMI-over-LAN without XCC reset.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.51 PSI322N [Critical update]
Release date: 6/2019
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where voltage fault may be reported when high capacity (e.g. 480G) M.2 drives are installed
Fixed a problem where XCC may reset unexpectedly or become very slow responsive when running VMware or
Nutanix which may trigger hundreds of IPMI commands to XCC in a few seconds
Fixed a problem where energy value may be reported incorrectly by XCC
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added support for Mellanox CX-6 HDR100 and CX5 Innova-2
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.50 PSI322K [Critical update]
Release date: 4/2019
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2016-9604, CVE-2017-3604, CVE-2017-3605, CVE-2017-3606, CVE-2017-3607, CVE-2017-3608, CVE-2017-3609, CVE-2017-3610,
CVE-2017-3611, CVE-2017-3612, CVE-2017-3613, CVE-2017-3614, CVE-2017-3615, CVE-2017-3616, CVE-2017-3617, CVE-2017-18344,
CVE-2018-0734, CVE-2018-9251, CVE-2018-12327, CVE-2018-12896, CVE-2018-13053, CVE-2018-13405, CVE-2018-14567, CVE-2018-14618,
CVE-2018-16062, CVE-2018-16151, CVE-2018-16152, CVE-2018-16402, CVE-2018-16403, CVE-2018-17540
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem if XCC user name are more than 63 characters remote console can't be launched
Fixed a problem where system may hang when boot to LXPM
Fixed a problem where XCC backup may fail with status in progress and unable to recover until XCC reset
Fixed a problem where XCC may produce unexpected drive sense logs
Updated the error message for UEFI update failure to be more intuitive
Fixed a problem where CMM can't download XCC service data with ipv6 address.
Enabled LXCE to configure SNMPv1 trap settings of XCC
Fixed a problem where XCC may not report EKM error after system reboot if removing SKLM server address from XCC SKLM server configuration
Fixed a problem where CPUs may still be in throttled status after power supply recovered from unstable state
Fixed a problem where email alert test function may not work
Fixed a problem where XCC CLI timeout may not align with the value set by command accseccfg -wt
Fixed a problem where user can't use the same Engine ID to do both SNMP Get and SNMP Trap.
Fixed a problem where XCC event log may stop logging new entries
Fixed a problem where the rdmount tool may not work to remote mount media
Fixed a problem where message Get Remote Console KVM Failed may appear when connecting the remote console thru XCC.
Enhanced FEH support for CPU Uncorrectable Error
Fixed a problem where Redfish/Slpd memory leak
Fixed a problem where event log missing issue
Fixed a problem where XCC may hang and UEFI may hang in DXE INIT stage for long time
Fixed a problem where I2C bus mishandling may cause ME error message in XCC event log.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added support of encryption options in SMTP
Added support of $expand parameter on GET requests in Redfish
Added voltage planar fault details, PSU log and CPU microcode version into XCC service data
Added support of Java client for XCC virtual media
Added support of BootSourceOverrideMode property to represent current boot mode in Redfish
Added support of 24 hours power meter history in Redfish
Added support for additional Redfish properties of RAID cotroller, BBU and NVMe
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.40 PSI316N [Critical update]
Release date: 10/2018
==================================================
--------------------------------------------------------------------------
1.0 Overview
--------------------------------------------------------------------------
Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
Supported configurations can be found on the Lenovo Operating System
Interoperability Guide at the following website:
https://lenovopress.com/osig
--------------------------------------------------------------------------
2.0 Prerequisites and dependencies
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
3.0 Security Fixes
--------------------------------------------------------------------------
Firmware changes to address security vulnerabilities:
CVE-2017-2629, CVE-2017-5209, CVE-2017-5545, CVE-2017-6435, CVE-2017-6436, CVE-2017-6437, CVE-2017-6438, CVE-2017-6439,
CVE-2017-6440, CVE-2017-6965, CVE-2017-6966, CVE-2017-6969, CVE-2017-7209, CVE-2017-7210, CVE-2017-7223, CVE-2017-7224,
CVE-2017-7225, CVE-2017-7226, CVE-2017-7227, CVE-2017-7299, CVE-2017-7300, CVE-2017-7301, CVE-2017-7302, CVE-2017-7303,
CVE-2017-7304, CVE-2017-7468, CVE-2017-7562, CVE-2017-7614, CVE-2017-7982, CVE-2017-8392, CVE-2017-8393, CVE-2017-8394,
CVE-2017-8395, CVE-2017-8396, CVE-2017-8397, CVE-2017-8398, CVE-2017-8421, CVE-2017-9038, CVE-2017-9039, CVE-2017-9040,
CVE-2017-9041, CVE-2017-9042, CVE-2017-9043, CVE-2017-9044, CVE-2017-9742, CVE-2017-9743, CVE-2017-9744, CVE-2017-9745,
CVE-2017-9746, CVE-2017-9747, CVE-2017-9748, CVE-2017-9749, CVE-2017-9750, CVE-2017-9751, CVE-2017-9752, CVE-2017-9753,
CVE-2017-9754, CVE-2017-9755, CVE-2017-9756, CVE-2017-9954, CVE-2017-9955, CVE-2017-16826, CVE-2017-16827, CVE-2017-16828,
CVE-2017-16829, CVE-2017-16830, CVE-2017-16831, CVE-2017-16832, CVE-2017-17080, CVE-2017-17121, CVE-2017-17122, CVE-2017-17123,
CVE-2017-17124, CVE-2017-17125, CVE-2017-17126, CVE-2018-0495, CVE-2018-0500, CVE-2018-0732, CVE-2018-0737, CVE-2018-6323,
CVE-2018-6543, CVE-2018-6759, CVE-2018-6829, CVE-2018-7182, CVE-2018-7183, CVE-2018-7184, CVE-2018-7185, CVE-2018-7208,
CVE-2018-7568, CVE-2018-7569, CVE-2018-7570, CVE-2018-7643, CVE-2018-8945, CVE-2018-9996, CVE-2018-10372, CVE-2018-10373,
CVE-2018-10534, CVE-2018-10535, CVE-2018-10811, CVE-2018-12938, CVE-2018-13785, CVE-2018-14404, CVE-2018-1000300, CVE-2018-1000301
--------------------------------------------------------------------------
4.0 Other Fixes
--------------------------------------------------------------------------
Fixed a problem where fan data may not be reported properly via Redfish.
Fixed a problem where multi-role LXCA users have no privilege to access remote console.
Fixed a problem where RAID VD status icon is green for degraded status.
Fixed a problem where VD Write Policy status is not aligned with UEFI and LXPM.
Fixed some Japanese translation issues on Web UI.
Cleared some unused info in Lenovo-XCC-MIB.mib.
Removed Power Errors field from Power Supply Inventory Web.
--------------------------------------------------------------------------
5.0 Enhancements
--------------------------------------------------------------------------
Added support for Intel P4500/P4600 drives
Added support for Toshiba CM5 Mainstream NVMe SSD (AIC + U.2)
Added M.2 RAID setup support.
Added SNMPv1 trap support.
Added the support of using LXCE to configure IPv4 address for the LAN over USB interface.
Added the support of NIC speed information in CIM.
Added support for LXCA to create virtual drives of additional RAID types.
Added the support of the Fast Initialization operation on RAID Setup.
Added the support of PSU firmware update via CIM.
Added support to display NIC FRU part number in LXCA.
Added an option to disable the password complexity.
Added support for LXCA to manage multiple RAID adapters in a system.
Standardized Web UI color scheme.
--------------------------------------------------------------------------
6.0 Other Changes
--------------------------------------------------------------------------
none
--------------------------------------------------------------------------
7.0 Limitations
--------------------------------------------------------------------------
none
==================================================
Version 1.31 PSI314R [Critical update]
Release date: 7/20/2018
==================================================
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13,7Y95,7Y96,7Z08,7Z09
- Firmware changes to address security vulnerabilities:
CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2016-6153, CVE-2017-3735, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738,
CVE-2017-5130, CVE-2017-6451, CVE-2017-6452, CVE-2017-6455, CVE-2017-6458, CVE-2017-6459, CVE-2017-6460, CVE-2017-6462,
CVE-2017-6463, CVE-2017-6464, CVE-2017-7407, CVE-2017-8816, CVE-2017-8817, CVE-2017-10989, CVE-2017-12799, CVE-2017-12967,
CVE-2017-13710, CVE-2017-14129, CVE-2017-14130, CVE-2017-14333, CVE-2017-14529, CVE-2017-14930, CVE-2017-14932, CVE-2017-14933,
CVE-2017-14934, CVE-2017-14938, CVE-2017-14939, CVE-2017-14940, CVE-2017-14974, CVE-2017-15020, CVE-2017-15021, CVE-2017-15022,
CVE-2017-15023, CVE-2017-15024, CVE-2017-15025, CVE-2017-15225, CVE-2017-15938, CVE-2017-15939, CVE-2017-15996, CVE-2017-16544,
CVE-2017-16931, CVE-2017-16932, CVE-2017-17484, CVE-2017-1000100, CVE-2017-1000101, CVE-2017-1000254, CVE-2017-1000257, CVE-2017-1000494,
CVE-2018-6872, CVE-2018-1000005, CVE-2018-1000007, CVE-2018-1000120, CVE-2018-1000121, CVE-2018-1000122
- Added the support for PSU Firmware update.
- Added the support of sending alerts via Redfish events.
- Added the support of reading and reporting DIMM FRU part numbers.
- Added the support of setting an SHA256 hash value as BMC account password via OneCLI.
- Added support for SSD wearing gauge data.
- Added support for remote diagnostics in LXPM.
- Added the support of displaying drive type HDD/SED.
- Added support for PFAs and failure events for HBA-connected drives.
- Added support for rdmount/rdcli in XCC.
- Added support for riser II card to display the PCI info on the web inventory page on SR630.
- Added the support of RDOC images with multiple partitions and MBR format.
- Added support for Micron 480GB M.2 SSD.
- Added support for CV8 128GB M.2 boot SSD.
- Added support for ThinkSystem Qlogic QL41134 PCIe 10Gb 4-Port Base-T Ethernet Adapter.
- Fixed a problem where XCCERRMSG_EC_760 is shown instead of a more user friendly error message when creating XCC user account via XCC Web UI.
- Fixed a problem where XCC USER/LDAP Global settings cannot be modified.
- Fixed a problem where uncorrectable CPU errors are falsely reported on systems configured with M.2 mirror kit.
- Fixed a problem where XCC Web UI does not display expiration date of license keys.
- Fixed a problem where Write Policy is not reflected properly after applying new setting in XCC Web UI.
- Fixed a problem where Configure IPv4 setting for Ethernet over USB does not work as expected.
- Fixed a problem where Core MC registers are not dumped in Fatal Error Handling.
- Fixed a problem where XCC FFDC parser may not parse the event logs.
- Fixed a problem where UEFI POST cannot complete once a USB image is mounted with XCC remote console.
- Fixed a problem where active events cannot be fetched via Redfish.
- Fixed a problem where the firmware inventory information is not available via Redfish intermittently.
- Fixed an issue where XCC Web UI and IPMI may become unresponsive to requests.
- Fixed an issue where XCC may become not accessible through the dedicated management port.
==================================================
Version 1.22 PSI312Q [Critical update]
Release date: 5/30/2018
==================================================
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13
- Fixed a problem where the number of I2C channels was no longer large enough to display all attached buses.
==================================================
Version 1.21 PSI312P [Critical update]
Release date: 3/30/2018
==================================================
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13
- Fixed a problem where FCS / CRC errors were being generated by the XCC management port.
- Fixed a problem where Energy Efficient Ethernet caused dropped packets on the XCC management port.
- Fixed a problem where the wrong fan LED illuminated on a fan fault.
==================================================
Version 1.20 PSI312O [Critical update]
Release date: 3/15/2018
==================================================
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13
- Firmware changes to address security vulnerabilities:
CVE-2014-4616, CVE-2016-10396, CVE-2017-0379, CVE-2017-7533, CVE-2017-7542, CVE-2017-10661, CVE-2017-11108, CVE-2017-11462,
CVE-2017-11541, CVE-2017-11542, CVE-2017-11543, CVE-2017-12132, CVE-2017-12133, CVE-2017-12192, CVE-2017-12424, CVE-2017-12448,
CVE-2017-12449, CVE-2017-12450, CVE-2017-12451, CVE-2017-12452, CVE-2017-12453, CVE-2017-12454, CVE-2017-12455, CVE-2017-12456,
CVE-2017-12457, CVE-2017-12458, CVE-2017-12459, CVE-2017-12893, CVE-2017-12894, CVE-2017-12895, CVE-2017-12896, CVE-2017-12897,
CVE-2017-12898, CVE-2017-12899, CVE-2017-12900, CVE-2017-12901, CVE-2017-12902, CVE-2017-12985, CVE-2017-12986, CVE-2017-12987,
CVE-2017-12988, CVE-2017-12989, CVE-2017-12990, CVE-2017-12991, CVE-2017-12992, CVE-2017-12993, CVE-2017-12994, CVE-2017-12995,
CVE-2017-12996, CVE-2017-12997, CVE-2017-12998, CVE-2017-12999, CVE-2017-13000, CVE-2017-13001, CVE-2017-13002, CVE-2017-13003,
CVE-2017-13004, CVE-2017-13005, CVE-2017-13006, CVE-2017-13007, CVE-2017-13008, CVE-2017-13009, CVE-2017-13010, CVE-2017-13011,
CVE-2017-13012, CVE-2017-13013, CVE-2017-13014, CVE-2017-13015, CVE-2017-13016, CVE-2017-13017, CVE-2017-13018, CVE-2017-13019,
CVE-2017-13020, CVE-2017-13021, CVE-2017-13022, CVE-2017-13023, CVE-2017-13024, CVE-2017-13025, CVE-2017-13026, CVE-2017-13027,
CVE-2017-13028, CVE-2017-13029, CVE-2017-13030, CVE-2017-13031, CVE-2017-13032, CVE-2017-13033, CVE-2017-13034, CVE-2017-13035,
CVE-2017-13036, CVE-2017-13037, CVE-2017-13038, CVE-2017-13039, CVE-2017-13040, CVE-2017-13041, CVE-2017-13042, CVE-2017-13043,
CVE-2017-13044, CVE-2017-13045, CVE-2017-13046, CVE-2017-13047, CVE-2017-13048, CVE-2017-13049, CVE-2017-13050, CVE-2017-13051,
CVE-2017-13052, CVE-2017-13053, CVE-2017-13054, CVE-2017-13055, CVE-2017-13687, CVE-2017-13688, CVE-2017-13689, CVE-2017-13690,
CVE-2017-13725, CVE-2017-14106, CVE-2017-14140, CVE-2017-14952, CVE-2017-14954, CVE-2017-14991, CVE-2017-15274, CVE-2017-15299,
CVE-2017-15649, CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, CVE-2017-1000111, CVE-2017-1000112, CVE-2017-1000366
- Upgraded Redfish support to be compliant with specification version 1.2.0 and schema version 2017.1
- Enhanced Redfish to add support of Redfish Host Interface, processor inventory and secure boot settings
- Enhanced thermal efficiency in demanding environmental conditions
- Optimized the content of email alerts
- Improved Accessibility support by enabling the CI-162 Accessibility Compliance
- Added the ability to capture and replay the server's video information leading up to the point where the operating system may hang or crash
- Added the ability to record and replay the video from a remote control session
- Added the ability to de-assert RAID error events
- Added the ability of automatic FFDC collection when triggered by a call home event
- Added the ability to save multiple FFDC instances on the XCC
- Added the ability to display pending firmware version information
- Added support for common event ID for Serviceability and FRU info in active events
- Added support for system fan weighting: top and bottom shuttle
- Fixed a problem where the XCC remote console virtual media may work slowly when mounting an ISO image via web browser
- Fixed a problem where when with a Japanese keyboard incorrect symbols are sent to the remote console
- Fixed a problem where the XCC was unable to use remote console with IE11 under windows 7
- Fixed a problem where the system reported a configuration error when four 1600w PSU installed in 4S
- Fixed a CLI issue where the embedded ASU command does not show setting values correctly
- Fixed a Sensor ME Fault message on LCD panel and missing RAID details in XCC following a firmware update
- Fixed an issue which resulted îµensor ME Status?on LCD panel and missing RAID information after a firmware update on SR950 (Tip HT506374)
==================================================
Version 1.10 PSI310L [Critical update]
Release date: 12/07/2017
==================================================
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X11,7X12,7X13
- Firmware changes to address security vulnerabilities:
CVE-2004-0392, CVE-2004-0403, CVE-2012-2871, CVE-2012-6702, CVE-2014-2285, CVE-2014-5461, CVE-2014-6272, CVE-2015-4047,
CVE-2015-4844, CVE-2015-6525, CVE-2015-9019, CVE-2016-0494, CVE-2016-0718, CVE-2016-4472, CVE-2016-4912, CVE-2016-5131,
CVE-2016-5300, CVE-2016-6252, CVE-2016-6293, CVE-2016-6354, CVE-2016-7415, CVE-2016-7567, CVE-2016-7922, CVE-2016-7923,
CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931,
CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939,
CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986,
CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2016-9318, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842,
CVE-2016-9843, CVE-2016-10195, CVE-2016-10196, CVE-2016-10197, CVE-2016-10254, CVE-2016-10255, CVE-2017-3731, CVE-2017-5029,
CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337,
CVE-2017-5341, CVE-2017-5342, CVE-2017-5461, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, CVE-2017-5486,
CVE-2017-5669, CVE-2017-5969, CVE-2017-5970, CVE-2017-6074, CVE-2017-6214, CVE-2017-6345, CVE-2017-6346, CVE-2017-6348,
CVE-2017-7187, CVE-2017-7308, CVE-2017-7487, CVE-2017-7502, CVE-2017-7507, CVE-2017-7645, CVE-2017-7867, CVE-2017-7868,
CVE-2017-7869, CVE-2017-7889, CVE-2017-7895, CVE-2017-8872, CVE-2017-8890, CVE-2017-9047, CVE-2017-9048, CVE-2017-9049,
CVE-2017-9050, CVE-2017-9074, CVE-2017-9075, CVE-2017-9076, CVE-2017-9077, CVE-2017-9242, CVE-2017-9526, CVE-2017-9778
- Added a parameter to the clearlog CLI command to specify which log to clear (event log or audit log).
- Added the support of recurring intervals for IP address blacklist.
- Added the ability to mount or unmount a local or network directory as a virtual USB drive.
- Added the Redfish REST API for FFDC downloading.
- Added additional contents to SSDP responses.
- Added the support of using IPv6 NDP (Neighbor Discovery Protocol) to determine the host's IPv6 address on the Ethernet over USB interface.
- Added support for Intel NVMe U.2 drives.
- Added an interface to query readiness for firmware update.
- Upgraded Redfish.
- Corrected a problem that system doesn't record log about PSU removal and reinsertion.
- Corrected a problem under ONECLI to issue UEFI load default command get no response
- Corrected a problem that there is no strings displayed in XCC web Adapter page
==================================================
Version 1.01 PSI306Z [Critical update]
Release date: 11/19/2017
==================================================
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X12
- Fix for Intel PSIRT LEN-17297. Intel has identified security vulnerabilities that
could potentially place impacted platforms at risk. This is a critical fix that
Lenovo strongly recommends applying to your system as soon as possible. For details
please refer to this link: https://support.lenovo.com/us/en/product_security/LEN-17297
Intel Management Engine (ME) 11.x
- Mitigated security vulnerability CVE-2017-5705 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5705) details anticipated to be published November 20,2017
- Mitigated security vulnerability CVE-2017-5708 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=CVE-2017-5708) details anticipated to be published November 20, 2017
- Mitigated security vulnerability CVE-2017-5711 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5711) details anticipated to be published November 20,2017
- Mitigated security vulnerability CVE-2017-5712 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5712) details anticipated to be published November 20, 2017
Intel Server Platform Service (SPS) 4.0
- Mitigated security vulnerability CVE-2017-5706 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5706) details anticipated to be published November 20, 2017
- Mitigated security vulnerability CVE-2017-5709 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5709) details anticipated to be published November 20, 2017
- Mitigated security vulnerability CVE-2017-5707 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5707) details anticipated to be published November 20, 2017
- Mitigated security vulnerability CVE-2017-5710 (http://www.cve.mitre.org/cgibin/cvename.cgi?name=2017-5710) details anticipated to be published November 20, 2017
The previous version (version 1.00, PSI306Y) of this code was removed from the
Lenovo website in order to protect our customers. If the previous version
(version 1.00, PSI306Y) of code is required , please contact your local support center.
==================================================
Version 1.00 PSI306Y [Initial Release]
Release date: 9/2/2017
==================================================
This is the initial release of the product listed below.
- Supports System: Lenovo ThinkSystem SR950 Server, Machine Types: 7X12
==================================================
Related Information
==================================================
Lenovo Data Center forums
https://forums.lenovo.com/t5/Datacenter-Systems/ct-p/sv_eg
Lenovo Data Center Support
http://datacentersupport.lenovo.com
Lenovo ThinkSystem Rack Server Customer Documentation
http://thinksystem.lenovofiles.com/help/topic/rack_servers/overview_rack_servers.html
XClarity Controller Customer Documentation
http://sysmgt.lenovofiles.com/help/topic/com.lenovo.thinksystem.xcc.doc/product_page.html
Lenovo Product Security Advisories
https://datacentersupport.lenovo.com/us/en/product_security/home
Was this information helpful?
Your feedback helps to improve the overall experience
Alias Id: LNVGY_FW_XCC_PSI356B-3.20_ANYOS_NOARCH
Fix ID: lnvgy_fw_xcc_psi356b-3.20_anyos_noarch
Release Date: 15 Aug 2024
Original Publish Date: 15 Aug 2024
Document ID: DS570458
Supported Search Keywords: Lenovo, Core, Firmware, xcc, AnyOS
