• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Intel Finally Ready With Security Microcode Updates for Broadwell, Haswell

Joined
Jul 5, 2013
Messages
28,260 (6.75/day)
I don't know that they are that hard to exploit given example toolkits are in the wild, frankly.
There are several requirements that have to be met in order for an exploit to work. Either direct physical access to subject system, or direct remote access. Trojan's will work but have to be constructed and configured very carefully. And that is just for starters. While these things are possible, they are very improbable. If someone is using a good computing ethic and methodology the chances are minimal at best of a directed attack succeeding.
 
Joined
Aug 20, 2007
Messages
21,541 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
There are several requirements that have to be met in order for an exploit to work. Either direct physical access to subject system, or direct remote access. Trojan's will work but have to be constructed and configured very carefully. And that is just for starters. While these things are possible, they are very improbable. If someone is using a good computing ethic and methodology the chances are minimal at best of a directed attack succeeding.

I'm assuming a compromised system ("malware-laden" if you will) true so it probably isn't much to worry about for the average TPU user.
 
Joined
Apr 16, 2010
Messages
3,609 (0.67/day)
Location
Portugal
System Name LenovoⓇ ThinkPad™ T430
Processor IntelⓇ Core™ i5-3210M processor (2 cores, 2.50GHz, 3MB cache), Intel Turbo Boost™ 2.0 (3.10GHz), HT™
Motherboard Lenovo 2344 (Mobile Intel QM77 Express Chipset)
Cooling Single-pipe heatsink + Delta fan
Memory 2x 8GB KingstonⓇ HyperX™ Impact 2133MHz DDR3L SO-DIMM
Video Card(s) Intel HD Graphics™ 4000 (GPU clk: 1100MHz, vRAM clk: 1066MHz)
Storage SamsungⓇ 860 EVO mSATA (250GB) + 850 EVO (500GB) SATA
Display(s) 14.0" (355mm) HD (1366x768) color, anti-glare, LED backlight, 200 nits, 16:9 aspect ratio, 300:1 co
Case ThinkPad Roll Cage (one-piece magnesium frame)
Audio Device(s) HD Audio, RealtekⓇ ALC3202 codec, DolbyⓇ Advanced Audio™ v2 / stereo speakers, 1W x 2
Power Supply ThinkPad 65W AC Adapter + ThinkPad Battery 70++ (9-cell)
Mouse TrackPointⓇ pointing device + UltraNav™, wide touchpad below keyboard + ThinkLight™
Keyboard 6-row, 84-key, ThinkVantage button, spill-resistant, multimedia Fn keys, LED backlight (PT Layout)
Software MicrosoftⓇ WindowsⓇ 10 x86-64 (22H2)
I'm more talking about my motherboard maker than the actual microde update... last time i updated a bios for x299 from MSI all of my system fan headers stopped being able to control PWM fans.

Bios updates in general for me have become "do it only if broken, or if there is extra performance". I like to give them like 2-3 revisions before i update.
I understand you, had that kind of experience with ASRock. I have more of a problem with vague release notes...or the absense of them.
 

TheMailMan78

Big Member
Joined
Jun 3, 2007
Messages
22,599 (3.52/day)
Location
'Merica. The Great SOUTH!
System Name TheMailbox 5.0 / The Mailbox 4.5
Processor RYZEN 1700X / Intel i7 2600k @ 4.2GHz
Motherboard Fatal1ty X370 Gaming K4 / Gigabyte Z77X-UP5 TH Intel LGA 1155
Cooling MasterLiquid PRO 280 / Scythe Katana 4
Memory ADATA RGB 16GB DDR4 2666 16-16-16-39 / G.SKILL Sniper Series 16GB DDR3 1866: 9-9-9-24
Video Card(s) MSI 1080 "Duke" with 8Gb of RAM. Boost Clock 1847 MHz / ASUS 780ti
Storage 256Gb M4 SSD / 128Gb Agelity 4 SSD , 500Gb WD (7200)
Display(s) LG 29" Class 21:9 UltraWide® IPS LED Monitor 2560 x 1080 / Dell 27"
Case Cooler Master MASTERBOX 5t / Cooler Master 922 HAF
Audio Device(s) Realtek ALC1220 Audio Codec / SupremeFX X-Fi with Bose Companion 2 speakers.
Power Supply Seasonic FOCUS Plus Series SSR-750PX 750W Platinum / SeaSonic X Series X650 Gold
Mouse SteelSeries Sensei (RAW) / Logitech G5
Keyboard Razer BlackWidow / Logitech (Unknown)
Software Windows 10 Pro (64-bit)
Benchmark Scores Benching is for bitches.
Didn't AMD fix this with a BIOs update?
 
Joined
Apr 16, 2010
Messages
3,609 (0.67/day)
Location
Portugal
System Name LenovoⓇ ThinkPad™ T430
Processor IntelⓇ Core™ i5-3210M processor (2 cores, 2.50GHz, 3MB cache), Intel Turbo Boost™ 2.0 (3.10GHz), HT™
Motherboard Lenovo 2344 (Mobile Intel QM77 Express Chipset)
Cooling Single-pipe heatsink + Delta fan
Memory 2x 8GB KingstonⓇ HyperX™ Impact 2133MHz DDR3L SO-DIMM
Video Card(s) Intel HD Graphics™ 4000 (GPU clk: 1100MHz, vRAM clk: 1066MHz)
Storage SamsungⓇ 860 EVO mSATA (250GB) + 850 EVO (500GB) SATA
Display(s) 14.0" (355mm) HD (1366x768) color, anti-glare, LED backlight, 200 nits, 16:9 aspect ratio, 300:1 co
Case ThinkPad Roll Cage (one-piece magnesium frame)
Audio Device(s) HD Audio, RealtekⓇ ALC3202 codec, DolbyⓇ Advanced Audio™ v2 / stereo speakers, 1W x 2
Power Supply ThinkPad 65W AC Adapter + ThinkPad Battery 70++ (9-cell)
Mouse TrackPointⓇ pointing device + UltraNav™, wide touchpad below keyboard + ThinkLight™
Keyboard 6-row, 84-key, ThinkVantage button, spill-resistant, multimedia Fn keys, LED backlight (PT Layout)
Software MicrosoftⓇ WindowsⓇ 10 x86-64 (22H2)
I haven't checked the AGESA 1.1.0.1 release notes if Spectre was addressed.
 

som

New Member
Joined
Apr 5, 2018
Messages
1 (0.00/day)
¿Qué pasa "Flanagan"...?. ¿Por qué no me admites mis opiniones...?. ¿No te gustan...?:
¡QUE NO SIRVE LA ACTUALIZACIÓN DE INTEL NADA MÁS QUE PARA "FASTIDIAR" EL PC. pierde 10% de recursos y se nota al entrar en el escritorio, en la pantalla de bienvenida.
NO ACTUALIZAR Update Haswell CPU Microcode to revision 24 and Broadwell CPU Microcode to revision 1D. Negativo. "CHAPUZAS" de INTEL.
 
Joined
Sep 22, 2012
Messages
1,010 (0.23/day)
Location
Belgrade, Serbia
System Name Intel® X99 Wellsburg
Processor Intel® Core™ i7-5820K - 4.5GHz
Motherboard ASUS Rampage V E10 (1801)
Cooling EK RGB Monoblock + EK XRES D5 Revo Glass PWM
Memory CMD16GX4M4A2666C15
Video Card(s) ASUS GTX1080Ti Poseidon
Storage Samsung 970 EVO PLUS 1TB /850 EVO 1TB / WD Black 2TB
Display(s) Samsung P2450H
Case Lian Li PC-O11 WXC
Audio Device(s) CREATIVE Sound Blaster ZxR
Power Supply EVGA 1200 P2 Platinum
Mouse Logitech G900 / SS QCK
Keyboard Deck 87 Francium Pro
Software Windows 10 Pro x64
Can someone explain me how to avoid patches.
I finally fix audio problems with Win10_x64_1709.
Installed only Chipset drivers before Security Bug is exposed. Now I want to know what to do to avoid auto updates of Security patches.
Maybe someone to write name of Windows Update who is connected with that.
 
Joined
Mar 14, 2014
Messages
1,430 (0.36/day)
Processor 11900K
Motherboard ASRock Z590 OC Formula
Cooling Noctua NH-D15 using 2x140mm 3000RPM industrial Noctuas
Memory G. Skill Trident Z 2x16GB 3600MHz
Video Card(s) eVGA RTX 3090 FTW3
Storage 2TB Crucial P5 Plus
Display(s) 1st: LG GR83Q-B 1440p 27in 240Hz / 2nd: Lenovo y27g 1080p 27in 144Hz
Case Lian Li Lancool MESH II RGB (I removed the RGB)
Audio Device(s) AKG Q701's w/ O2+ODAC (Sounds a little bright)
Power Supply Seasonic Prime 850 TX
Mouse Glorious Model D
Keyboard Glorious MMK2 65% Lynx MX switches
Software Win10 Pro
Can someone explain me how to avoid patches.
I finally fix audio problems with Win10_x64_1709.
Installed only Chipset drivers before Security Bug is exposed. Now I want to know what to do to avoid auto updates of Security patches.
Maybe someone to write name of Windows Update who is connected with that.
I could be really wrong here... I think only the Pro version of Win10 lets you stop all updates. For regular windows though I think you just uninstall them after they install themselves and just flag it to not install again.. pretty sure that's what I did, it has been a while, someone will explain this better no doubt.
 
Joined
Dec 16, 2017
Messages
2,939 (1.15/day)
System Name System V
Processor AMD Ryzen 5 3600
Motherboard Asus Prime X570-P
Cooling Cooler Master Hyper 212 // a bunch of 120 mm Xigmatek 1500 RPM fans (2 ins, 3 outs)
Memory 2x8GB Ballistix Sport LT 3200 MHz (BLS8G4D32AESCK.M8FE) (CL16-18-18-36)
Video Card(s) Gigabyte AORUS Radeon RX 580 8 GB
Storage SHFS37A240G / DT01ACA200 / ST10000VN0008 / ST8000VN004 / SA400S37960G / SNV21000G / NM620 2TB
Display(s) LG 22MP55 IPS Display
Case NZXT Source 210
Audio Device(s) Logitech G430 Headset
Power Supply Corsair CX650M
Software Whatever build of Windows 11 is being served in Canary channel at the time.
Benchmark Scores Corona 1.3: 3120620 r/s Cinebench R20: 3355 FireStrike: 12490 TimeSpy: 4624
¿Qué pasa "Flanagan"...?. ¿Por qué no me admites mis opiniones...?. ¿No te gustan...?:
¡QUE NO SIRVE LA ACTUALIZACIÓN DE INTEL NADA MÁS QUE PARA "FASTIDIAR" EL PC. pierde 10% de recursos y se nota al entrar en el escritorio, en la pantalla de bienvenida.
NO ACTUALIZAR Update Haswell CPU Microcode to revision 24 and Broadwell CPU Microcode to revision 1D. Negativo. "CHAPUZAS" de INTEL.

Reviviste un thread que no tenía actividad desde hace más de un mes... y por cierto, seguro que este era el thread correcto? O incluso el foro correcto...? Casi nadie habla español por aquí...

Can someone explain me how to avoid patches.
I finally fix audio problems with Win10_x64_1709.
Installed only Chipset drivers before Security Bug is exposed. Now I want to know what to do to avoid auto updates of Security patches.
Maybe someone to write name of Windows Update who is connected with that.

To avoid Windows 10 security updates, you'd have to disconnect the system from the Internet, permanently. Windows 10 updates are cumulative and all in one, meaning you get security patches, bug-fixing patches and everything else in only one update, and everything gets installed.

I could be really wrong here... I think only the Pro version of Win10 lets you stop all updates. For regular windows though I think you just uninstall them after they install themselves and just flag it to not install again.. pretty sure that's what I did, it has been a while, someone will explain this better no doubt.

Windows 7 allows you to do that, flagging updates so that they don't get installed. Windows 10 Home just installs everything, the Pro version allows you to choose the Business Branch (now they call it the Semi-Annual Channel), which avoids getting the big feature upgrades (for example, from the Creators Update to the Fall Creators Update), for at least 4 months. Also, the Pro edition can pause updates for up to 35 days.

However, being that the Meltdown/Spectre patch is considered a security update, even if it is also a microcode update, it may be impossible to avoid it without stopping all other updates.
 

rtwjunkie

PC Gaming Enthusiast
Supporter
Joined
Jul 25, 2008
Messages
14,019 (2.34/day)
Location
Louisiana
Processor Core i9-9900k
Motherboard ASRock Z390 Phantom Gaming 6
Cooling All air: 2x140mm Fractal exhaust; 3x 140mm Cougar Intake; Enermax ETS-T50 Black CPU cooler
Memory 32GB (2x16) Mushkin Redline DDR-4 3200
Video Card(s) ASUS RTX 4070 Ti Super OC 16GB
Storage 1x 1TB MX500 (OS); 2x 6TB WD Black; 1x 2TB MX500; 1x 1TB BX500 SSD; 1x 6TB WD Blue storage (eSATA)
Display(s) Infievo 27" 165Hz @ 2560 x 1440
Case Fractal Design Define R4 Black -windowed
Audio Device(s) Soundblaster Z
Power Supply Seasonic Focus GX-1000 Gold
Mouse Coolermaster Sentinel III (large palm grip!)
Keyboard Logitech G610 Orion mechanical (Cherry Brown switches)
Software Windows 10 Pro 64-bit (Start10 & Fences 3.0 installed)
I could be really wrong here... I think only the Pro version of Win10 lets you stop all updates. For regular windows though I think you just uninstall them after they install themselves and just flag it to not install again.. pretty sure that's what I did, it has been a while, someone will explain this better no doubt.
Reviviste un thread que no tenía actividad desde hace más de un mes... y por cierto, seguro que este era el thread correcto? O incluso el foro correcto...? Casi nadie habla español por aquí...



To avoid Windows 10 security updates, you'd have to disconnect the system from the Internet, permanently. Windows 10 updates are cumulative and all in one, meaning you get security patches, bug-fixing patches and everything else in only one update, and everything gets installed.



Windows 7 allows you to do that, flagging updates so that they don't get installed. Windows 10 Home just installs everything, the Pro version allows you to choose the Business Branch (now they call it the Semi-Annual Channel), which avoids getting the big feature upgrades (for example, from the Creators Update to the Fall Creators Update), for at least 4 months. Also, the Pro edition can pause updates for up to 35 days.

However, being that the Meltdown/Spectre patch is considered a security update, even if it is also a microcode update, it may be impossible to avoid it without stopping all other updates.

The Windows Update Mini-Tool (see @Mussels signature for link) allows you to selectively install and/or hide certain updates.

As to delaying the major new versions (although not forever) then you need W10 pro.
 
Joined
Jul 5, 2013
Messages
28,260 (6.75/day)
you'd have to disconnect the system from the Internet
Incorrect. You need only disable the "BITS" service and the windows update services in the computer management control panel. When/if you wish to update again, re-enable them both and let it update. When finished, disable them again. This method allows the user to completely control when/if updates happen.
 
Top