On Tue, Jan 9, 2018 at 5:08 PM, Mike <craigslist...@gmail.com> wrote:
> For CVE-2017-5754 [rogue data cache load] you are good as the PCID line > doesn't impact security. > For CVE-2017-5715 [branch target injection] you need a > microcode/BIOS/firmware update. > > The Windows patch is installed.... > *Windows OS support for branch target injection mitigation is present: > True* > > But the hardware isn't fixed... > *Hardware support for branch target injection mitigation is present: False* > > Which is causing the patch to be disabled... > *Windows OS support for branch target injection mitigation is disabled by > absence of hardware support: True* > > As shown here... > *Windows OS support for branch target injection mitigation is enabled: > False* > > Once the hardware gets its fix the last two should go True. > Well, due to the age of the systems involved (5+ years old), I don't really expect to see a hardware fix, although I might be wrong. Haven't see a firmware upgrade in 2-3 years, for either machine .. So I'm not really protected. Oh, goodie ...