Lenovo has released a rather important update to some of its Legion Go models. In particular, this is targeting the Windows handhelds, and not the more recent SteamOS Legion Go S. It only affects the compatible 8APU1 models on the operating system.

The new BIOS brings about a whole range of new patches that target a load of vulnerabilities, and gives the APU small improvements and bug fixes. These updates are crucial to ensuring your Legion Go is safe and secure and allows you to keep using it without any problems.

Lenovo also makes it rather easy and simple to do. You can either run it from the Legion Space or from the website to install it. It doesn’t require you to go through the same sort of trouble as you would on a desktop PC.

Legion GO BIOS version N3CN38WW

The summary of changes on Legion Go’s website is rather basic. It doesn’t go into the details of what each of the patches affects, but here’s an overview of what each of those entails.

All of these range from medium severity scores to not yet rated, meaning it’s still worthy of patching out to keep the security as up to date as possible for the handheld. Although the latter half of these are from the previous month, the initial lot also ranges from the first half of 2023, so it’s about time they came to a close for the Legion Go.

The newer lot looks to target the Insyde Kernels and reduce the probability of a buffer overread through various means. Others look to target vulnerabilities that can cause memory corruption or initiate OS commands on the device.

The full list of the patched issues is listed below, with their listing in the National Vulnerability Database.

• AMD AGESA PI 1.2.0.0
• CVE-2024-36347
• CVE-2023-40238
• CVE-2024-38796
• CVE-2024-6364
• CVE-2024-52877
• CVE-2024-52878
• CVE-2024-52879
• CVE-2024-52880

About the Author

Sebastian Kozlowski

With a fascination for technology and games, Seb is a tech writer with a focus on hardware and deals. He is also the primary tester and reviewer at BGFG and PCGuide.