- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
I'm building a Linux 4.14.15 kernel using the configuration provided by OVH (ftp://ftp.ovh.net/made-in-ovh/bzImage/4.14.15/config-4.14.15-xxxx-std-ipv6-64 ftp://ftp.ovh.net/made-in-ovh/bzImage/4.14.15/config-4.14.15-xxxx-std-ipv6-64).
In the CONFIG_EXTRA_FIRMWARE parameter; I have found 10 intel firmware that I cannot found either into the latest RPM package from CentOS7 and the latest version of the microcodes provided by Intel (https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File).
The 10 references are:
- /lib/firmware/intel-ucode/06-0a-04
- /lib/firmware/intel-ucode/06-2c-02
- /lib/firmware/intel-ucode/06-2e-06
- /lib/firmware/intel-ucode/06-4d-08
- /lib/firmware/intel-ucode/06-55-04
- /lib/firmware/intel-ucode/06-57-01
- /lib/firmware/intel-ucode/06-85-00
- /lib/firmware/intel-ucode/06-9e-09
- /lib/firmware/intel-ucode/0f-01-01
- /lib/firmware/intel-ucode/0f-02-02
Could you tell me more about these microcodes?
Are they still needed/required?
Any link with Meltdown et Spectre security issues?
Regards,
Chris
Link Copied
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello cnaslain
Thank you for joining the community.
Allow me to share with you the following link for information about the microcode.
https://www.intel.com/content/www/us/en/architecture-and-technology/facts-about-side-channel-analysis-and-intel-products.html https://www.intel.com/content/www/us/en/architecture-and-technology/facts-about-side-channel-analysis-and-intel-products.html
Regards,
Leonardo C.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello cnaslain
I was checking your case and would like to know if you need further help. If so, please do not hesitate in replying back.
Regards,
Leonardo C.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Chris,
I have looked only shortly at your list, but at least one of these microcodes is listed in the "Microcode Revision Guidance" as Meltdown/Spectre mitigation microcode update.
However, Intel did not release to the public 45% of the mitigation microcodes they declared as "Production" quality to the public.
All users using the affected processors like you and me are kept vulnerable this way, because Intel refuses to hand out these microcode updates.
If you are interested in the findings of my investigation, please read https://bsd.denkverbot.info/2018/05/exposed-missing-meltdownspectre.html my report.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page