I'm building a Linux 4.14.15 kernel using the configuration provided by OVH (ftp://ftp.ovh.net/made-in-ovh/bzImage/4.14.15/config-4.14.15-xxxx-std-ipv6-64 ftp://ftp.ovh.net/made-in-ovh/bzImage/4.14.15/config-4.14.15-xxxx-std-ipv6-64).
In the CONFIG_EXTRA_FIRMWARE parameter; I have found 10 intel firmware that I cannot found either into the latest RPM package from CentOS7 and the latest version of the microcodes provided by Intel (https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File).
The 10 references are:
Could you tell me more about these microcodes?
Are they still needed/required?
Any link with Meltdown et Spectre security issues?
Thank you for joining the community.
Allow me to share with you the following link for information about the microcode.
I have looked only shortly at your list, but at least one of these microcodes is listed in the "Microcode Revision Guidance" as Meltdown/Spectre mitigation microcode update.
However, Intel did not release to the public 45% of the mitigation microcodes they declared as "Production" quality to the public.
All users using the affected processors like you and me are kept vulnerable this way, because Intel refuses to hand out these microcode updates.
If you are interested in the findings of my investigation, please read https://bsd.denkverbot.info/2018/05/exposed-missing-meltdownspectre.html my report.