AMD Releases Spectre v2 Microcode Updates for CPUs Going Back To 2011 (bleepingcomputer.com)
Catalin Cimpanu, writing for BleepingComputer: AMD has released CPU microcode updates for processors affected by the Spectre variant 2 (CVE-2017-5715) vulnerability. The company has forwarded these microcode updates to PC and motherboard makers to include them in BIOS updates. Updates are available for products released as far as 2011, for the first processors of the Bulldozer line. Microsoft has released KB4093112, an update that also includes special OS-level patches for AMD users in regards to the Spectre v2 vulnerability. Similar OS-level updates have been released for Linux users earlier this year. Yesterday's microcode patches announcement is AMD keeping a promise it made to users in January, after the discovery of the Meltdown and Spectre (v1 and v2) vulnerabilities.
Sandy bridge Intel still hasn't been patched, and that's only a few years old.
What about my 486DX-40?
#DeleteFacebook
im crowning rn
but the handicapped stall is occupied and the mens room is stank anyway
but full on turtle head
nay, tortoise head
not sure if i can make it home or if id bother coming back after
My FX-8300 (eight-core) from 2011 is getting a patch but not my Phenom II 840 (quad-core) from 2010. Both are still going strong after all these years.
Now to apply it to my desktops
-- Tigger warning: This post may contain tiggers! --
The 2011 AMD CPUs were the first with PSP, IOW, backdoors built right in.
intel backdoored their CPUs back in 2009, so they need to patch well before that, too.
It's worth noting AMD has said that Spectre 2 is virtually impossible to exploit on the Zen architecture. Even AMD engineers were unable to create a working exploit for it. Of coarse, they still have to release a patch for it to be on the safe side.
MODDOWN! ; creimer karma whoring sock puppet post!
CREIMER' SUBMISSIONS UPDATE: /. so make sure to go to:
Note also that creimer is trying to regain karma by getting his submissions published as articles on
https://slashdot.org/~__aaclcg...
https://slashdot.org/~IDrinkFa...
https://slashdot.org/~_sharp'r...
https://slashdot.org/~crreimer
https://slashdot.org/~cdreimer
https://slashdot.org/~criss69
https://slashdot.org/~Anonymou...
https://slashdot.org/~FatCashe...
https://slashdot.org/~ILoveFat...
https://slashdot.org/~IHateFat...
https://slashdot.org/~IAteFatC...
https://slashdot.org/~ITapeFat...
https://slashdot.org/~IApeFatC...
https://slashdot.org/~IPrayFat...
https://slashdot.org/~FatCashe...
and mod down his submissions as well. The great thing is that you don't even need mod points to mod down a submission, just click on the "minus" icon!
Yes, believe it or not, creimer owns all the above sock puppet accounts. It is a mystery why Slashdot management tolerates it!
creimer wrote:
I don't bother with mod points. I'm doing something much more sinister. It took ten story submissions ? I'll have to double check the number ? to move cdreimer's karma from neutral to excellent without ever being exposed to the capricious mods. Mmmmmwwwwahahahahahahaha!
https://slashdot.org/comments....
Danger, Will Robinson, Danger! Creimy is posting more than 2 posts a day. Hurry! mod down otherwise /. will go to hell again!
Note: you can mod down even if already at -1 to lower karma and to prevent lost /. users to accidentally mod up.
creimer wrote:
All you need to do is find a website with a permissive TOS, say, Slashdot, create a Python script to scrape your own comments, sprinkle Amazon affiliate links in various posts, and then re-post past links whenever possible. Won't be long before you start making "coffee money" each month.
https://slashdot.org/comments....
C.D. Reimer is a renowned Slashdot collaborator, as he puts it himself; "Because of the quality of my posts and my article submissions, I'm a highly rated commentator and moderator."
But does anybody ever wondered what "C.D." stands for? Well, it stands for Creimy Dumpty of course!
Creimy Dumpty sat on the wall,
Creimy Dumpty had a great fall.
All the king's horses
And all the king's men
Couldn't put Creimy Dumpty
Together again.
Creimy's siblings video and theme song, very realistic, especially the pants, just like Creimy's:
https://www.youtube.com/watch?...
With "Vice President Pence Vowing US Astronauts Will Return To the Moon", we are sure they will need miracle workers up there, here is what it would look like. Note that Creimy takes care of bringing a lot of food to the moon as depicted below:
https://www.youtube.com/watch?...
Creimy's real pictures:
Before the sex change:
I highly doubt that the motherboard makers are going to make new BIOS releases for seven year old motherboards.
So may be we'll see updates to HP's DL385 servers etc., but most private users will stay at the status quo.
Creimer left Slashdot for YouTube. You can find him there. He started posting videos from Silicon Valley Comic Con.
Theres no way in hell i am taking a 30% performance decrease because of some theoretical memory exploit..
I have been purposely avoiding any 2018 firmwares for just this reason!
But it would be nice to get a confirmation of my bias as things may have changed. Even a 10% performance hit would be not worth it imho. So some rogue process can read a random part of the computers memory. I'm sure some clever person will figure out a way to exploit it, but I am not buying the hype that this is a super big deal at the current time.
As a potential lottery winner, I totally support tax cuts for the wealthy
Jesus christ, asshole. No one cares about your creimer fixation. No one.
will supermicro update there old 6XXX boards
k10 was still being sold at that point, and a lot of us stuck with it due to Bulldozer's lackluster performance.
Better than Intel is ok, but AMD only had like 3 fucking uArches during that period and they couldn't bother to at least cover all the DDR3 ones?
The RockChip model from the Pine64 guys is across the board better, including up to 4GB of LPDDR3.
Finally a cheap SBC whose memory specs make it a 'minimal 2d desktop replacement'. It still won't do the 3d lifting for a composited desktop or gaming, but it is big enough to run a few dozen tabs in Firefox without crashing or grinding to a halt, unlike alternative boards. Or run a pretty decent sized web frontend for someone who really needs it.
Oh also in one of these discussions somebody mentioned having trouble with SATA storage adapters and Linux: You might read up on the UAS driver and how it broke a lot of devices that worked with the usb-storage driver, but whose firmware doesn't properly support the featureset that UAS probes the device for. The Hitachi Touro series of usb drives have this problem for instance, to the point of not only not booting, but not enumerating during plug and play operations either. I have yet to find a documented approach that works (blacklisting the uas driver doesn't seem to work on fedora at least.) End result unless you stick to kernel 3.12 is a variety of usb devices may be broken, if you choose the wrong one.
There is no patch for pre-2011 CPU, but are they vulnerable? If I understand correctly, Spectre stems from optimization that are present in recent CPU.
Do we have a list of affected AMD processors?
Yet here you are, you fat pest.