Discussion in 'Article Discussion' started by bit-tech, 23 Jan 2018.
If they can't release a fault free update some *six months after first being made aware of these vulnerabilities I'm left wondering if that's down to a lack of testing or if it's a case of not being able to mitigate against the vulnerabilities because of hardware limitations.
*Weren't they told about Spectre and Meltdown back in June?
This just keeps on getting better... NOT
Thank God for RYZEN.
Similar crap happened on the AMD side of things:
Have MS told Windows not to install the patch?
In fairness, that was from MS. This one's from Intel.
That said... hooray old PCs from the 90s scrap pile!
If you need a laugh, read the public email from Linus Torvalds to an Amazon Engineer about Intel updates for Spectre and Meltdown:
6 months of limited internal testing, vs. deployment on hundreds of millions of devices and configurations. You're going to find a lot of bugs.
AFAIK, AMD have yet to even release their microcode patches to mitigate SPECTRE, so far they're reliant on application and OS-level protections only.
There's "going to find a lot of bugs" and there's "release something so pitiful that pretty much every Linux vendor pulls it from their repos and you have to issue a press release warning people not to install it."
When it looked like it only affected Broadwell and Haswell, you could excuse it. Now we know it affects bleedin' everything? Nah. Intel dropped the ball, no excuses.
Favourite quote of the week.
If you actually read the article you're referring to, you'd know it's only older AND processors and not Ryzen that has a similar problem.. And Athlons are outdated mostly anyways
Next upgrade -> mobo/cpu combo to ryzen
Last week: grr i have an ivybridge, will i ever get a bios update?
This week: well, that's time and hassle saved.
VMware was shipping the microcode update with one of its patches. That got pulled about 48 hours after they released it. Luckily I only pushed it out to a couple of test hosts and no harm done it seems. For the majority of our hypervisor and server guest deployments we are waiting for the dust to settle a bit more as it seems every other day KB's are being updated. We have the luxury of them being very private so our risk surface is alot less.
I never said Ryzen, I said AMD.
Separate names with a comma.