Cumulative Update KB4494441 Windows 10 v1809 Build 17763.503 - May 14 Win Update

Page 7 of 31 FirstFirst ... 5678917 ... LastLast
  1.    #60

    boombastik said: View Post
    i7 4790 latest update. Microcode 25.


    Attachment 233720
    I too have the setting MDSWindowsSupportEnabled : False

    Should this be set to True, and if so, how do you enable it?
      My ComputersSystem Spec

  2. Cliff S's Avatar
    Posts : 24,698
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       #61

    Regarding MD5


    See : Intel Side Channel Vulnerability MDS

    On May 14, 2019, Intel and other industry partners shared details and information about a new group of vulnerabilities collectively called Microarchitectural Data Sampling (MDS).

    First identified by Intel’s internal researchers and partners, and independently reported to Intel by external researchers, MDS is a sub-class of previously disclosed speculative execution side channel vulnerabilities and is comprised of four related techniques. Under certain conditions, MDS provides a program the potential means to read data that program otherwise would not be able to see. MDS techniques are based on a sampling of data leaked from small structures within the CPU using a locally executed speculative execution side channel. Practical exploitation of MDS is a very complex undertaking. MDS does not, by itself, provide an attacker with a way to choose the data that is leaked.

    MDS is addressed in hardware starting with select 8th and 9th Generation Intel® Core™ processors, as well as the 2nd Generation Intel® Xeon® Scalable processor family. More details can be found here. We expect all future Intel® processors include hardware mitigations addressing these vulnerabilities.


    Assessing Risk

    Exploiting the MDS vulnerabilities outside the controlled conditions of a research environment is a complex undertaking. MDS vulnerabilities have been classified as low to medium severity per the industry standard CVSS, and it’s important to note that there are no reports of any real world exploits of these vulnerabilities.

    As technologies become more and more complex, we believe it takes the ecosystem working together to keep products and data more secure. We appreciate the research community and our industry partners for their contributions and coordinated disclosure of these issues.
      My ComputersSystem Spec

  3.    #62

    boombastik said: View Post
    -https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf
    Haswell microcode 27

    Will ASRock TSD provided microcode update 27 for our motherboard?
      My ComputerSystem Spec

  4.    #63

    Thanks. I don't have the modern CPUs providing hardware mitigation. The article states For products where MDS is not addressed in hardware, Intel is releasing processor microcode updates (MCU) as part of our regular update process with OEMs. There is no chance of Gigabyte providing support for my older motherboard unless Intel can offer direct updates.
    Last edited by Steve C; 15 May 2019 at 02:15.
      My ComputersSystem Spec

  5.    #64

    Microsoft is currently looking into the double-install issue:

    Windows 10, version 1809 and Windows Server 2019 - Windows Release Information _ Microsoft Doc
      My ComputerSystem Spec

  6. Cliff S's Avatar
    Posts : 24,698
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       #65

    Nobody is going to attack using MD5 on normal Joe home user. It's just too complicated.

    One of the best things anyone can do is keep their ME Firmware(an autonomous subsystem on the CPU itself)and Management Engine Interface (Driver) updated to help prevent remote access, and many of the vulnerabilities even need physical access to the machine. And I believe if someone has physical access to the machine for a home user, they'll steal the machine before trying to use a vulnerability
      My ComputersSystem Spec

  7.    #66

    EdTittel said: View Post
    Installed on 4 of 5 current branch machines. I'll install on my wife's PC later tonight. My production PC is now weird after restart during update: the screen stays black until the lock screen comes up. Very strange! On the plus side, this update went extremely quickly. I checked the leftover packages using dism /online /cleanup-image /analyzecomponentstore and it came up with 2 packages in need of clean-up. It's taking FOREVER to run the cleanup, even though the update took virtually no time at all. Sigh.
    --Ed--
    1st update for KB4494441, I'm still stuck with .475 and 2 packages needed to be clean up (I didn't run the startcomponentcleanup). 2nd update for KB4494441 then successfully became .503 and the number of reclaimable packages is 0. (I ran sfc /scannow) *Windows Resource Protection did not find any integrity violations.*
    As for the disk cleanup is around 3.xx GB and the duration is approximately 5 minutes only. (After successfully updated .503)
      My ComputerSystem Spec


  8.    #67

    Cliff S said: View Post
    Nobody is going to attack using MD5 on normal Joe home user. It's just too complicated.

    One of the best things anyone can do is keep their ME Firmware(an autonomous subsystem on the CPU itself)and Management Engine Interface (Driver) updated to help prevent remote access, and many of the vulnerabilities even need physical access to the machine. And I believe if someone has physical access to the machine for a home user, they'll steal the machine before trying to use a vulnerability
    Did you notice the Intel® TPM Provisioning Service is enabled by default?
      My ComputerSystem Spec

  9. Cliff S's Avatar
    Posts : 24,698
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       #68

    khanmein said: View Post
    Did you notice the Intel® TPM Provisioning Service is enabled by default?
    Set to automatic.
    I hope it's enabled by default, as it's important to Windows security: https://docs.microsoft.com/en-us/win...s-uses-the-tpm
      My ComputersSystem Spec

  10.    #69

    Steve C said: View Post
    Thanks. I don't have the modern CPUs providing hardware mitigation. The article states For products where MDS is not addressed in hardware, Intel is releasing processor microcode updates (MCU) as part of our regular update process with OEMs. There is no chance of Gigabyte providing support for my older motherboard unless Intel can offer direct updates.
    Intel has never up till now released MCU directly to end users. It provides its updates to OEMs and OS vendors.
    If you want to check your CPU status, according to Intel's plans for updated MCU, check the latest Intel Microcode Revison Guidance
      My ComputerSystem Spec


 
Page 7 of 31 FirstFirst ... 5678917 ... LastLast

Related Threads
UPDATE 5/14: Cumulative Update KB4494441 Windows 10 v1809 Build 17763.503 - May 14 Source: https://support.microsoft.com/en-us/help/4495667 Direct download links for KB4495667 MSU file from Microsoft Update Catalog:
UPDATE 4/2: Cumulative Update KB4490481 Windows 10 v1809 Build 17763.404 - April 2 Windows Update - Windows 10 Forums Source: https://support.microsoft.com/en-us/help/4489899/windows-10-update-kb4489899 Direct download links for...
UPDATE 1/8: Cumulative Update KB4480116 Windows 10 v1809 Build 17763.253 - Jan. 8 Windows Update - Windows 10 Forums Source: https://support.microsoft.com/en-us/help/4483235 Direct download links for KB4483235 MSU file from Microsoft...
UPDATE 3/1: Cumulative Update KB4482887 Windows 10 v1809 Build 17763.316 - March 1 Windows Update - Windows 10 Forums Source: https://support.microsoft.com/en-us/help/4487044/windows-10-update-kb4487044 Direct download links for...
UPDATE 2/12: Cumulative Update KB4487044 Windows 10 v1809 Build 17763.316 - Feb. 12 Windows Update - Windows 10 Forums Source: https://support.microsoft.com/en-us/help/4476976 Direct download links for KB4476976 MSU file from...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 08:00.
Find Us