Intel Issues First Corrected Firmware Fixes for CPU Security Flaws

Posted on February 8, 2018 by Mehedi Hassan in Hardware with 10 Comments

Intel: Updates Will Make Chips "Immune" From New Security Vulnerabilities

In January, two major CPU vulnerabilities were disclosed. PC manufacturers, OS makers, and CPU manufacturers rushed to release patches for the vulnerabilities, called Meltdown and Spectre. Intel, the world’s largest chipmaker, was one of the first firms to release patches for its processors.

Some patches from Intel for the security flaws, unfortunately, weren’t stable. The company started releasing patches for systems shortly after the vulnerabilities were disclosed, but it was later discovered that Intel’s patches were faulty. The patches reportedly resulted in unexpected reboots in some systems, forcing the company to pull the updates. By the time Intel pulled its buggy patches, Microsoft already released out-of-band patches for Windows that disables one of the patches from Intel.

After much drama, Intel is today releasing corrected patches for the flaws. The updated patches — which, by the way, degrade the performance of older systems — have been under intense testing and development since mid-January. Intel has released updates for some Skylake-based systems to its OEM partners today, and it will continue to roll out updates to other systems in the coming days. “Ultimately, these updates will be made available in most cases through OEM firmware updates. I can’t emphasize enough how critical it is for everyone to always keep their systems up-to-date,” Intel’s CVP Navin Shenoy said in a blog post.

So far, Intel has not only struggled to deal with the initial backlash caused by the disclosure of the security flaws, the company has somehow managed to make things worse with the buggy patches.

Tagged with , ,

Join the discussion!

BECOME A THURROTT MEMBER:

Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate

Register
Comments (11)

11 responses to “Intel Issues First Corrected Firmware Fixes for CPU Security Flaws”

  1. jimchamplin

    Isn’t it convenient that the performance hit disproportionately affects older hardware?


    Convenient for Intel and their OEM partners that is.

  2. Stooks

    So we are supposed to trust these patches? No thanks.

  3. Vic116

    OEMs like Dell have pulled and re-released BIOS updates for Spectre (Variant 2) prior to this latest Intel release. For example, Dell re-posted a BIOS update on 2/8 for my XPS 8910 that was previously pulled so this latest Intel release could not have made it into that update. This latest Intel release appears to be new and not just a correction of what was released previously.

  4. Thomas Parkison

    OK here's a really dumb question... If I build a new Intel system today and install this firmware update will I see the supposed performance penalty? Would I be better off waiting for the next series of Intel chips that has the fix baked into the silicon?

  5. Siv

    I think I will wait a few weeks before applying these based on Intel's recent track record!

Leave a Reply