On Wed, 10 Jan 2018 21:55:18 -0500 "Taiidan@gmx.com" Taiidan@gmx.com wrote:
I am curious of any intel insiders know if there will be microcode updates released for older intel CPU's (ex: sandy/ivybridge) and failing that, what can be done in regards to securing them from meltdown/spectre.
Not an Intel insider, but here is a list from Lenovo listing affected products and when microcode updates will be available addressing Spectre v2:
https://support.lenovo.com/de/en/solutions/len-18282
X230 is scheduled for 2/2/2018.
I don't know about the X200, but I doubt there will be further microcede updates :/ But actually I don't know.
For meltdown, running the latest kernel should be sufficient I guess, since it has the KPTI patches.
I believe this is a relevant coreboot topic considering how many coreboot boards have these and older CPU's....without a fix there will be only one coreboot compatible laptop with open source hardware initiation that is remotely secure (lenovo g505s as has a pre-PSP AMD CPU) and theoretically owner controllable (as the previous C2D/C2Q's such as the X200 are now permanently insecure without intervention from intel apparently)
At this point even a massive performance loss is better than having to throw out so much now-useless hardware.
-- coreboot mailing list: coreboot@coreboot.org https://mail.coreboot.org/mailman/listinfo/coreboot