Windows 10: Windows Client Guidance against speculative execution vulnerabilities

Page 64 of 64 FirstFirst ... 1454626364
  1.    1 Week Ago #630

    MUser said: View Post
    RS5, Skip ahead, gave me new microcode.
    Good to know. Kinda confirming what I have heard. Here is hoping that I will have a microcode update from RS4 when it is finally released.
      My ComputerSystem Spec

  2.    1 Week Ago #631

    Hi,

    Here is hoping that I will have a microcode update from RS4 when it is finally released.
    Yep. And one that covers more than just a few of Intel's latest CPUs too.
    Currently RS4 does not even support the KB that held the MC updates for 1709. Go figure....

    Cheers,
      My ComputersSystem Spec

  3.    1 Week Ago #632

    Hi,

    Ground Sloth said: View Post
    I don't know if it would be feasible in your particular situation, but you could move the computer to Linux. Linux has protection against Spectre Variant 2 built into the Linux kernel (reptoline). And if you want Linux to update the CPU microcode, you can download the update directly from Intel and install it manually. Intel provides instructions.

    Download Linux* Processor Microcode Data File

    No need to move to Linux. If you want to you can use the MCU's with AMI's tool to load the MCU in Windows at every boot.
    Works fine for me even though GRC does not seem to recognize it, the MCU is effectively active as HWInfo will show so it does provide protection against Spectre attacks.

    This can cover any machine Intel has updated the MC for and works on all W10 versions I've tested it on from 1040 to SCU 1803.

    Cheers,
      My ComputersSystem Spec

  4.    1 Week Ago #633

    How to check which microcode revision Windows is loading (if newer than BIOS microcode)?

    Run Notepad.exe and turn on Format/Word Wrap from pull down menu.
    Use File/Open and navigate to C:\Windows\System32\mcupdate_GenuineIntel.dll, its a bit slow to open
    Scroll to the late screen full

    You will see a list of CPUID's, Platform ID's and MCU revisions (microcode)

    Using build 17643 RS5, some match up with the latest releases from Intel but others are still on old revisions, e.g. 20655.

    Hope this helps somehow?
      My ComputerSystem Spec

  5.    1 Week Ago #634

    MUser said: View Post
    How to check which microcode revision Windows is loading (if newer than BIOS microcode)?

    Run Notepad.exe and turn on Format/Word Wrap from pull down menu.
    Use File/Open and navigate to C:\Windows\System32\mcupdate_GenuineIntel.dll, its a bit slow to open
    Scroll to the late screen full

    You will see a list of CPUID's, Platform ID's and MCU revisions (microcode)

    Using build 17643 RS5, some match up with the latest releases from Intel but others are still on old revisions, e.g. 20655.

    Hope this helps somehow?

    If Windows is not updating microcode based on Intel's guidance then I suggest opening support case with Microsoft.
      My ComputerSystem Spec


  6. Posts : 350
    Windows 10 Pro 1709 16299.309
       1 Week Ago #635

    MUser said: View Post
    How to check which microcode revision Windows is loading (if newer than BIOS microcode)?

    Run Notepad.exe and turn on Format/Word Wrap from pull down menu.
    Use File/Open and navigate to C:\Windows\System32\mcupdate_GenuineIntel.dll, its a bit slow to open
    Scroll to the late screen full

    You will see a list of CPUID's, Platform ID's and MCU revisions (microcode)

    Using build 17643 RS5, some match up with the latest releases from Intel but others are still on old revisions, e.g. 20655.

    Hope this helps somehow?
    That file doesn't exist on my skylake system, but I did install a MC update from Gigabyte and Inspectre shows my system as being protected. I'll have to check the tablet when I get a chance, its unprotected.


    ********** Correction - It does exist my ERROR (first one this year) ************

    Last edited by storageman; 1 Week Ago at 12:56.
      My ComputersSystem Spec


  7. Posts : 213
    Microsoft Windows 10 Home x64
       1 Week Ago #636

    Here is a copy of where my Windows PowerShell indicated my system is at with regard to Windows Client Guidance against speculative execution vulnerabilities.

    I'm not sure if there is anything further I need to do at the moment?

    I know my Toshiba Satellite P50-C (Part Number: PSPT2A-00E001) BIOS is up-to-date with version 1.50 and I'm also aware a firmware update from Toshiba for my Model Number for Intel, AMD & Microsoft Speculative Execution and Indirect Branch Prediction Side Channel Analysis Method Security Vulnerabilities is yet to be released and determined.

    Intel, AMD & Microsoft Speculative Execution and Indirect Branch Prediction Side Channel Analysis Method Security Vulnerabilities

    Click image for larger version. 

Name:	Windows Client Guidance against speculative execution vulnerabilities.png 
Views:	7 
Size:	100.2 KB 
ID:	185043
      My ComputerSystem Spec

  8.    1 Week Ago #637

    NSA Inspectors: Kernel 5.0 In Reinforcement


    Hp seems overwhelmed? in-Specter's on vacations there:

    Code:
    ~$ cat /proc/sys/kernel/osrelease
    4.17.0-041700rc1-generic
    ~$ cat /sys/devices/system/cpu/vulnerabilities/*
    Not affected
    Mitigation: __user pointer sanitization
    Mitigation: Full AMD retpoline
    
    sudo dpkg-query -l | grep amd64-microcode
    ii  amd64-microcode                             3.20171205.1
    dpkg -l mesa-vdpau-drivers
    ii  mesa-vdpau-dri 1:18.0.0-0~x amd64  Mesa VDPAU video acceleration dri
    ~$ glxinfo | grep "OpenGL version"
    OpenGL version string: 3.0 Mesa 18.0.0
    Code:
    AMD CARRIZO (DRM 3.25.0 / 4.17.0-041700rc1-generic, LLVM 6.0.0)
    Last edited by MikeMecanic; 1 Week Ago at 23:32.
      My ComputerSystem Spec


 
Page 64 of 64 FirstFirst ... 1454626364

Related Threads
The PowerShell script execution policies enables you to determine which Windows PowerShell scripts (if any) will be allowed to run on your computer. Windows PowerShell has four different execution policies: Execution Policy Description ...
Source: Mitigating speculative execution side-channel attacks in Microsoft Edge and Internet Explorer - Microsoft Edge Dev Blog See also update: Cumulative Update KB4056892 Windows 10 v1709 Build 16299.192 - Windows 10 Forums
Source: Google Online Security Blog: Disclosing vulnerabilities to protect users
Windows 10 - Need some guidance on recovery in Installation and Upgrade
One of my spare Windows 10 machines is on life support. I must have clobbered it somehow when I was tweaking the multiple display settings ( to incorporate a HDMI projector). It actually worked fine all week, but today, when I tired to set it...
Read more: http://www.zdnet.com/article/microsoft-offers-it-guidance-to-prepare-for-windows-as-a-service/
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 02:04.
Find Us