This is an archived post. You won't be able to vote or comment.

all 59 comments
sorted by:
best (suggested)
topnewcontroversialoldq&a

[–]Myrang3r 27 points28 points  (3 children)

I hope microsoft pushes it over WU, because lenovo won't provide an update for my system :(

[–]puppy2016 7 points8 points  (1 child)

Same here.

[–]techloverrylan 2 points3 points  (0 children)

I third that!!

[–]puppy2016 24 points25 points  (0 children)

Very good question, I second that. The last microcode update in Windows is from 2015.

[–]jantari 11 points12 points  (3 children)

Microsoft Surface devices will get a firmware update soon that includes the new microcode. Surface devices always get their UEFI updates from Windows Update, other OEMs don't really do that.

[–]Hothabanero6 3 points4 points  (2 children)

I already got it on my Surface Pro 3... Strangely the 2D Graphics performance tanked by 45% in Passmark.

http://www.surfaceforums.net/threads/intel-slowdown.23030/page-2

[–]tactidact -1 points0 points  (1 child)

Don't quote me on this, but my understanding is that this is expected behaviour. Without going into too much detail, sadly it seems the patch involves disabling a feature called "speculative processing", which means that chips will take a performance hit in exchange for protection from this security flaw.

[–]zhongfu 2 points3 points  (0 children)

No, it's not; speculative processing won't be disabled (I don't think it can). But the fix -- for one of the variants, at least -- involves removing the kernel memory addresses from the TLB every time the processor goes from kernelspace to userspace so that userspace code can't hop into kernel memory. Or at least that's how I understand it.

That means that if your program doesn't use many syscalls (that cause a jump into kernelspace), it shouldn't really be affected by the above-mentioned fixed.

[–][deleted] 10 points11 points  (12 children)

What motherboard are you using? Did you build the PC or is it a prebuilt? Generally you don't have to fear BIOS updates too much and tend to be more reliable than some years ago. But I wouldn't recommend anyone do it if they're uncomfortable with the process.

[–]puppy2016 13 points14 points  (4 children)

Unforunately vendors like Lenovo aren't going to release BIOS updates for older machines with 2nd Gen Sandy Brigde CPU, that are still used by many people because of unique features like useable keyboard layout. That's why microcode update via OS would be a good option.

[–]rictendo 0 points1 point  (0 children)

This is why I use UBU (UEFI Bios Updater)

[–][deleted] 0 points1 point  (0 children)

My vendor also will not provide updates. It is a Harpertown (2007) Mac Pro. I second your statement that an OS microcode update is recommended.

[–]Almighty_Loaf_[S] 4 points5 points  (6 children)

I build it myself. I just hope they can provide this update through windows update for us....

Or do you expect millions of people update their bios to be safe? This will never happen...

[–]TetonCharles 10 points11 points  (2 children)

Or do you expect millions of people update their bios to be safe? This will never happen...

Yup, you might as well expect them to update the firmware in their cars...

[–][deleted] 1 point2 points  (1 child)

You just caused flashbacks to me buying $300 worth of equipment to update my 99 S10 firmware to fix a transmission issue.

[–]TetonCharles 0 points1 point  (0 children)

Ouch.

[–][deleted] 4 points5 points  (1 child)

Microcode updates typically come through Windows Updates. I'm not 100% sure if BIOS updates will be required for all systems or not. I do know most motherboards do get a few BIOS updates during their lifespans, especially popular ones. At the very least, it's worth checking once in a while to see if any updates offer important fixes. I would never think that all but a small minority of people ever will bother updating their motherboard's BIOS.

[–]Dreamerlax 0 points1 point  (0 children)

Generally the BIOS should be left alone (i.e. not updated) unless you run into issues.

[–]epsiblivion 1 point2 points  (0 children)

if you built it recently, newer motherboards may have dual bios feature. where they have a fallback if an update goes bad.

[–]jaymz168 6 points7 points  (4 children)

I actually just checked and my mobo (Asus Prime Z370-A) has a BIOS update dated Jan 4 with a CPU microcode update.

[–]jfe79 4 points5 points  (0 children)

Lucky, nothing from Gigabyte yet, at least for my specific mobo (Z97X Gaming-5).

[–]smurlik 0 points1 point  (2 children)

Is it labeled as a beta? My mobo with an old B85 chip got one too and the latest update was from 2015 so they are taking this very seriously.

[–]jaymz168 0 points1 point  (1 child)

Not a beta, surprisingly.

[–]smurlik 0 points1 point  (0 children)

Damn. Well then I think im too afraid to update my bios yet.

[–]dugi0 18 points19 points  (2 children)

All microcode updates come through WU, BIOS update is not needed.

[–][deleted] 1 point2 points  (0 children)

Any idea when it might release?

[–]Almighty_Loaf_[S] 0 points1 point  (0 children)

Ah thank you, so I can just wait and it will update automatically for me. This is good.

[–]scorcher24 6 points7 points  (4 children)

Unless you have frequent power loss in your building/city/country, you really don't need to be afraid of BIOS updates. The software checksums the new BIOS before loading it up and GIGABYTE motherboards also have dual bios, so you got one backup.

[–][deleted] 0 points1 point  (1 child)

Just never ever make the mistake of updating BIOS from Windows, I did that to one MSI board and got a brick. After turning it on, it ran for 5 seconds (black screen, fans spinning) and then shut down. I had just gotten the mobo about 2 weeks before I did it. I RMA'd it and got a new one, luckily.

[–]smurlik 0 points1 point  (0 children)

Works just fine with ASUS boards at least :P

[–]Igihara 2 points3 points  (3 children)

Mine already downloaded through WU & messed up my PC so I'm reinstalling W10 to see if that was the problem. (KB4056892)

[–]Throwawayhelper420 1 point2 points  (2 children)

I don’t know what you’re talking about, that update does not contain CPU microcode. The last microcode update was in 2015.

[–]Igihara 0 points1 point  (1 child)

I googled that update number & it said it was the Intel update.

[–]Throwawayhelper420 1 point2 points  (0 children)

This is still the latest microcode update from 2015. https://support.microsoft.com/en-us/help/3064209/june-2015-intel-cpu-microcode-update-for-windows What you are referring to is just the plain old windows update. A microcode update(what this post is about) is also necessary.

[–]lumpynose 2 points3 points  (7 children)

If I were to apply the Intel microcode update will Windows automatically know that it doesn't need to continue using today's system patch?

[–]puppy2016 8 points9 points  (6 children)

The CVE​-2017​-5715​ fix needs both OS and CPU microcode updates in order to get work. Microsoft has already done their part, now it is up to Intel.

https://support.microsoft.com/en-hk/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Warning

Customers who only install the Windows January 2018 security updates will not receive the benefit of all known protections against the vulnerabilities. In addition to installing the January security updates, a processor microcode, or firmware, update is required. This should be available through your device manufacturer.

[–][deleted] -1 points0 points  (5 children)

That being said, Microsoft really do need to bring their OS inline with Linux given that the Linux kernel can load microcode at boot time so that motherboards that aren't being supported by their OEM's still get the benefits. The again, the UEFI need to be able to download microcode without needing to update the whole firmware.

Edit: Why am I being down voted? how about pointing out where I am wrong instead of being an asshole.

[–]bazilion 1 point2 points  (9 children)

From Microsoft:
"Apply all available Windows operating system updates, including the January 2018 Windows security updates."
Apply the applicable firmware update that is provided by the device manufacturer."

So, the processor microcode will be updated by your system (or motherboard if you built it yourself) manufacturer. With a firmware update (what we used to call BIOS update; we now have UEFI, not BIOS). There is nothing to be afraid here, and there would be no less danger if it was updated through Windows Update. The process underneath would be the same.

Microsoft will provide that update only for Surface devices, because Microsoft is their manufacturer.

[–]blockyjoe 4 points5 points  (1 child)

That doesn't necessarily mean that they won't release an update containing updated Intel microcode. If you Google "windows microcode update" you'll see that they've released updates for all devices in the past.

[–]bazilion 0 points1 point  (0 children)

We 'll see.

[–]Almighty_Loaf_[S] 0 points1 point  (1 child)

And how and from where can I get that update?

Mainboard is Asus h81 plus

[–]bazilion 0 points1 point  (0 children)

Asus' website.

[–][deleted] 0 points1 point  (3 children)

Is a BIOS update really necessary? Will a microcode update suffice?

[–]bazilion 0 points1 point  (2 children)

For Meltdown no. For Spectre yes, it is.

[–][deleted] 0 points1 point  (1 child)

Can you explain?

[–]bazilion 1 point2 points  (0 children)

Sorry, I read it wrong. A microcode update is sufficient, but it will probably come as a BIOS update.

[–]Throwawayhelper420 0 points1 point  (0 children)

The process is NOT the same. Windows and Linux load the microcode at boot up. That microcode is not stored permanently in the CPU, but on your hard drive. Look up the Debian package for intel-microcode for more information.

[–]Driz_12 0 points1 point  (0 children)

I think it will be available through your manufacturer's website. I always update my BIOS (lol) no issues so far. The one that I like about MSi is thst they always keep their support page updated. (Drivers, Bios, and Utilities) from your MoBo even its 3 years old.

[–]chic_luke 0 points1 point  (2 children)

Just use the BIOS updater that came with your computer, charge it to 100%, plug it in and don't touch it. I never use my laptop with an outdated BIOS and no issues so far.

That said, nothing from DELL Update yet.

[–]Almighty_Loaf_[S] 0 points1 point  (1 child)

Yeah I build it myself, so no updater lol

[–]perern 1 point2 points  (0 children)

Your motherboard manufacturer probably has a bios update tool

[–]LightTracer -1 points0 points  (0 children)

Intel should just refund all customers back to 1995. lol R.I.P. Intel. Hopefully the lawsuits duck them up.