Yesterday, PC World posted some articles regarding progress in the continuing Spectre and Meltdown saga.
The fixed Spectre fixes are coming fast and furious now. Intel quietly pushed CPU firmware updates out for Haswell (4th-generation) and Broadwell (5th-generation) processors earlier this week, following in the footsteps of recent microcode patches for Skylake (6th-gen), Kaby Lake (7th-gen), and Coffee Lake (8th-gen) processors.
Don’t expect to see the updates immediately. They need to trickle down through hardware suppliers like Dell, HP, Lenovo, and Asus in the form of motherboard BIOS updates; you can’t grab it directly from Intel. If you own a laptop or prebuilt PC from a major manufacturer, keep an eye out for an available update.
The Spectre CPU firmware updates will affect your PC’s performance, though it varies wildly depending on your hardware, operating system, and tasks at hand.
Typically, patching Spectre and Meltdown mitigations have followed a traditional pattern: Microsoft patches Windows via Windows Update, antivirus companies like AVG have patched their antivirus software, and so on. Intel, too, authors patches, as it recently did for Haswell and Broadwell CPUs. But unlike Microsoft, Intel doesn’t directly ship those patches to end users—it uses its network of PC makers and motherboard vendors to distribute them, after the appropriate testing by each vendor.
What isn’t clear is whether Microsoft will also push out Intel’s microcode via Windows Update, its usual distribution mechanism for supplying patches. … Though neither Microsoft nor Intel clarified exactly why Microsoft is providing Intel’s microcode, the likely reason is to support smaller PC makers, and especially motherboard makers … [So, for the typical PC user this does not apply, eh.]
Processor designations like Coffee Lake, Kaby Lake, Skylake, Broadwell, Haswell, etc., don’t mean anything to most of us; so, basically all this news tells us is that Intel and Microsoft (among others) are continuing to work on patches for relatively new and somewhat older PCs.
Intel’s revised patches for its Ivy Bridge [3rd gen] and Sandy Bridge [2nd gen] processor families have begun rolling out to address Spectre and Meltdown vulnerabilities. With the release of the new code, just a few older processor families remain in the patch queue.
By now, Microsoft and many antivirus vendors have issued the appropriate patches, but if you’re concerned that your PC or motherboard vendor hasn’t delivered the appropriate patch, you can also check Microsoft’s site.
Update 4-6-2018: How to find your motherboard’s Spectre CPU fix – Such a crucial patch should be much simpler to find – by Brad Chacos, Senior Editor, PCWorld – April 5, 2018
Operating system patches alone can protect against the nasty Meltdown flaw affecting Intel processors, but fixing Spectre —Meltdown’s nasty sibling, which affects all CPUs — requires firmware updates for your hardware. Those firmware fixes are finally available for all Intel processors scheduled to receive a fix, dating back to the Sandy Bridge (2nd-gen) era of Core processors from 2011.
Installing Spectre fixes aren’t so easy, though, especially if you’re using a computer you’ve built yourself, or one from a boutique PC builder that uses off-the-shelf parts. You can’t download CPU firmware patches directly from Intel or AMD; instead, you need to download them from your motherboard’s provider, such as Asus, Gigabyte, or ASRock. You’ll need to know your motherboard’s model number to find the correct firmware for your device, too, and Windows doesn’t make that easy to find.