Community
cancel
Showing results for 
Search instead for 
Did you mean: 
CNasl
Beginner
1,224 Views

Looking for non-listed microcodes

Hi,

I'm building a Linux 4.14.15 kernel using the configuration provided by OVH (ftp://ftp.ovh.net/made-in-ovh/bzImage/4.14.15/config-4.14.15-xxxx-std-ipv6-64 ftp://ftp.ovh.net/made-in-ovh/bzImage/4.14.15/config-4.14.15-xxxx-std-ipv6-64).

In the CONFIG_EXTRA_FIRMWARE parameter; I have found 10 intel firmware that I cannot found either into the latest RPM package from CentOS7 and the latest version of the microcodes provided by Intel (https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File).

The 10 references are:

  • /lib/firmware/intel-ucode/06-0a-04
  • /lib/firmware/intel-ucode/06-2c-02
  • /lib/firmware/intel-ucode/06-2e-06
  • /lib/firmware/intel-ucode/06-4d-08
  • /lib/firmware/intel-ucode/06-55-04
  • /lib/firmware/intel-ucode/06-57-01
  • /lib/firmware/intel-ucode/06-85-00
  • /lib/firmware/intel-ucode/06-9e-09
  • /lib/firmware/intel-ucode/0f-01-01
  • /lib/firmware/intel-ucode/0f-02-02

     

 

Could you tell me more about these microcodes?

 

Are they still needed/required?

 

Any link with Meltdown et Spectre security issues?

Regards,

Chris

0 Kudos
3 Replies
idata
Community Manager
118 Views

Hello cnaslain

 

 

Thank you for joining the community.

 

 

Allow me to share with you the following link for information about the microcode.

 

 

https://www.intel.com/content/www/us/en/architecture-and-technology/facts-about-side-channel-analysi... https://www.intel.com/content/www/us/en/architecture-and-technology/facts-about-side-channel-analysi...

 

 

Regards,

 

Leonardo C.

 

idata
Community Manager
118 Views

Hello cnaslain

 

 

I was checking your case and would like to know if you need further help. If so, please do not hesitate in replying back.

 

 

Regards,

 

Leonardo C.

 

SBlac3
Novice
118 Views

Chris,

I have looked only shortly at your list, but at least one of these microcodes is listed in the "Microcode Revision Guidance" as Meltdown/Spectre mitigation microcode update.

However, Intel did not release to the public 45% of the mitigation microcodes they declared as "Production" quality to the public.

All users using the affected processors like you and me are kept vulnerable this way, because Intel refuses to hand out these microcode updates.

If you are interested in the findings of my investigation, please read https://bsd.denkverbot.info/2018/05/exposed-missing-meltdownspectre.html my report.

Reply