On 26.04.2018 11:44, diffusae via coreboot wrote:
Do you think, that integrate the microcode updates into the coreboot image should be enough? To be safe in case of CVE-2017-5715?
No, AFAIK, these updates do nothing on its own. They only add control capabilities that your OS has to use (or be patched to use). But if the question was, if there is nothing more to do in coreboot, then yes. AFAICS, microcode updates for the X220 (and more [1]) have been updated in our blobs repo. Nico [1] https://review.coreboot.org/#/c/blobs/+/23315/ -- coreboot mailing list: coreboot@coreboot.org https://mail.coreboot.org/mailman/listinfo/coreboot
