Meltdown & Spectre patch Discussion

OP
bssunilreddy

bssunilreddy

Chosen of the Omnissiah
AMD Processor Security Updates

Overview
At AMD, security is a top priority and we are continually working to ensure the safety of our users as new risks arise. Recent public disclosures have brought to the forefront the constant needed to protect and secure data.

This site is a centralized location for the latest security-related updates as they relate to AMD.


Updates
Spectre Mitigation Update
4/10/18

Today, AMD is providing updates regarding our recommended mitigations for Google Project Zero (GPZ) Variant 2 (Spectre) for Microsoft Windows users. These mitigations require a combination of processor microcode updates from our OEM and motherboard partners, as well as running the current and fully up-to-date version of Windows. For Linux users, AMD recommended mitigations for GPZ Variant 2 were made available to our Linux partners and have been released to distribution earlier this year.

As a reminder, GPZ Variant 1 (Spectre) mitigation is provided through operating system updates that were made available previously by AMD ecosystem partners. GPZ Variant 3 (Meltdown) does not apply to AMD because of our processor design.

While we believe it is difficult to exploit Variant 2 on AMD processors, we actively worked with our customers and partners to deploy the above described combination of operating system patches and microcode updates for AMD processors to further mitigate the risk. A whitepaper detailing the AMD recommended mitigation for Windows is available, as well as links to ecosystem resources for the latest updates.


Operating System Updates for GPZ Variant 2/Spectre

Microsoft is releasing an operating system update containing Variant 2 (Spectre) mitigations for AMD users running Windows 10 (version 1709) today. Support for these mitigations for AMD processors in Windows Server 2016 is expected to be available following final validation and testing.


AMD Microcode Updates for GPZ Variant 2/Spectre

In addition, microcode updates with our recommended mitigations addressing Variant 2 (Spectre) have been released to our customers and ecosystem partners for AMD processors dating back to the first “Bulldozer” core products introduced in 2011.

AMD customers will be able to install the microcode by downloading BIOS updates provided by PC and server manufacturers and motherboard providers. Please check with your provider for the latest updates.

We will provide further updates as appropriate on this site as AMD and the industry continue our collaborative work to develop solutions to protect users from security threats.

Source:AMD Processor Security | AMD

 
OP
bssunilreddy

bssunilreddy

Chosen of the Omnissiah
AMD processors (CPUs) for mitigating CVE-2017-5715, Spectre Variant 2 update Patch

Source:*support.microsoft.com/en-us/help/4093112/windows-10-update-kb4093112
 

nRiTeCh

Broken In
Ok so till now frustrated getting just defender updates so kept windows update disabled. Came to know about the latest 1803 update. Enabled all update services and now 1803 is currently downloading via windows updates on my pc.

Now i read its changelog but nowhere found anything about Meltdown or Spectre patch related info if the old processors/mobos are patched in this or not. As mine is still i& 2600k and the Spectre utility reports as unpatched.

Will 1803 really resolve these issues and esp. pertaining too future windows updates issues??
 

whitestar_999

Super Moderator
Staff member
Meltdown patch was included in Feb 2018 updates for any win 7/8.1/10 version & most likely inbuilt in 1803 feature update.MS has released spectre patch covering till 4th gen of intel processors so most likely by may end or in June the patch for 2nd gen should be out.
*support.microsoft.com/en-in/help/4073757/protect-your-windows-devices-against-spectre-meltdown
*support.microsoft.com/en-us/help/4093836/summary-of-intel-microcode-updates
*support.microsoft.com/en-us/help/4090007/intel-microcode-updates
 

billubakra

Conversation Architect
Meltdown patch was included in Feb 2018 updates for any win 7/8.1/10 version & most likely inbuilt in 1803 feature update.MS has released spectre patch covering till 4th gen of intel processors so most likely by may end or in June the patch for 2nd gen should be out.
*support.microsoft.com/en-in/help/4073757/protect-your-windows-devices-against-spectre-meltdown
*support.microsoft.com/en-us/help/4093836/summary-of-intel-microcode-updates
*support.microsoft.com/en-us/help/4090007/intel-microcode-updates
1803 update is out, but I have not installed it yet. Will post results after installing the same.
 

whitestar_999

Super Moderator
Staff member
Win 10 April update removes the earlier KB4090007(optional,provided spectre patch) as per users reports.Maybe some issue with this new April update,my guess is expect to see it in some later updates in next 1-2 months.
 

quicky008

Technomancer
will MS eventually include the microcode updates for older intel cpus(ie haswell and earlier)with the windows updates in future?

@billubakra :which intel cpu are you using?
 

quicky008

Technomancer
If you're running windows then you can check it via control panel>system(or simply press windows+pause/break keys together to bring up the system window).

If its indeed a 6th/5th gen cpu then it should have been patched against variant 2 of the specter exploit as M$ claims to have included the microcodes for these cpus with their security updates already.
 

billubakra

Conversation Architect
If you're running windows then you can check it via control panel>system(or simply press windows+pause/break keys together to bring up the system window).

If its indeed a 6th/5th gen cpu then it should have been patched against variant 1 of the specter exploit as M$ claims to have included the microcodes for these cpus with their security updates already.
i5 6th generation. Still not spectre protected.
 

whitestar_999

Super Moderator
Staff member
If you're running windows then you can check it via control panel>system(or simply press windows+pause/break keys together to bring up the system window).

If its indeed a 6th/5th gen cpu then it should have been patched against variant 2 of the specter exploit as M$ claims to have included the microcodes for these cpus with their security updates already.
See my earlier post,MS has removed the spectre patch from Win 10 v1803 aka April Update.
 
OP
bssunilreddy

bssunilreddy

Chosen of the Omnissiah
Intel has revealed 77 new chip vulnerabilities, one of which has a notable performance impact

Here are the 77 Vulnerabilities:IPAS: November 2019 Intel Platform Update (IPU) - Technology@Intel
 

quicky008

Technomancer
Is it the zombieload v2 bug?

Does it affect 9th and 8th gen cpus too?

Have any patches or updates been issued to mitigate their impacts?
 
Top Bottom