amberghaji Posted January 12, 2018 Share Posted January 12, 2018 (edited) 6 minutes ago, SD73 said: That is a pretty complete list. Where did you find it? I thought I was home free with my FSB processor, but it is on the list. I find it here: https://downloadcenter.intel.com/download/27431/Linux-Processor-Microcode-Data-File Microcodes updates released for Linux and maybe soon for Windows. All listed CPUs will receive microcodes but not all will be patched for Meltdown/spectre flaw. please read notes included in intel download. Edited January 12, 2018 by amberghaji Link to comment Share on other sites More sharing options...
SD73 Posted January 12, 2018 Share Posted January 12, 2018 4 minutes ago, amberghaji said: I find it here: https://downloadcenter.intel.com/download/27431/Linux-Processor-Microcode-Data-File Microcodes updates released for Linux and maybe soon for Windows Thanks for posting! Link to comment Share on other sites More sharing options...
amberghaji Posted January 12, 2018 Share Posted January 12, 2018 (edited) According with this only the more recent CPUs will be patched for the flaws. check the list:https://www.bleepingcomputer.com/news/security/intel-releases-linux-cpu-microcodes-to-fix-meltdown-and-spectre-bugs/#comments Since 2013?https://en.wikipedia.org/wiki/Intel_Core Edited January 12, 2018 by amberghaji Link to comment Share on other sites More sharing options...
glnz Posted January 12, 2018 Author Share Posted January 12, 2018 Well, I installed the final one for me, KB4056615, which was a bit worrisome from heinoganda's posts. (I did not download it directly from https://www.catalog.update.microsoft.com/Search.aspx?q=posready. When I rebooted yet again, the yellow shield indicated it was downloaded and ready to install. Go figure.) Good news is that NTKRNLPA.EXE and NTOSKRNL.EXE have now upgraded to version 5.1.2600.7392 (with modification date 12/5/2017). Also: ATMFD.DLL is now version 5.1.2.253 (modified date 12/13/17) NTFS.SYS is also version 5.1.2600.7392 (with modification date 12/5/2017). Bad news is that a svchost,exe continues to use 50% of the CPU (with "Memory Usage" of 228,516 K ). (In the Task Manager processes list, I also see wuauclt.exe with zero use of the CPU but with 199,292 K of Memory Usage. My experience used to be that wuauclt.exe would eventually disappear after a few minutes when it wasn't update time. Is it a clue to the svchost issue?) So, half of my XP frontal cortex has gotten fall-down drunk. What to do? Link to comment Share on other sites More sharing options...
dencorso Posted January 12, 2018 Share Posted January 12, 2018 Which Office do you have in that machine? 2003? You're missing the compatibility pack updates, aren't you? On 1/9/2018 at 5:12 PM, Bersaglio said: http://download.microsoft.com/download/6/F/1/6F1A5B9A-ED3B-4C63-BDDA-26D762C51A37/wordconv2007-kb4011607-fullfile-x86-glb.exe http://download.microsoft.com/download/D/4/B/D4B3FAE6-FC50-4366-A631-07F7652433FC/xlconv2007-kb4011605-fullfile-x86-glb.exe http://download.microsoft.com/download/A/C/6/AC6D693D-2508-426F-B159-D9888814C26D/mso2007-kb4011201-fullfile-x86-glb.exe Link to comment Share on other sites More sharing options...
SD73 Posted January 12, 2018 Share Posted January 12, 2018 15 minutes ago, glnz said: Well, I installed the final one for me, KB4056615, which was a bit worrisome from heinoganda's posts. (I did not download it directly from https://www.catalog.update.microsoft.com/Search.aspx?q=posready. When I rebooted yet again, the yellow shield indicated it was downloaded and ready to install. Go figure.) Good news is that NTKRNLPA.EXE and NTOSKRNL.EXE have now upgraded to version 5.1.2600.7392 (with modification date 12/5/2017). Also: ATMFD.DLL is now version 5.1.2.253 (modified date 12/13/17) NTFS.SYS is also version 5.1.2600.7392 (with modification date 12/5/2017). Bad news is that a svchost,exe continues to use 50% of the CPU (with "Memory Usage" of 228,516 K ). (In the Task Manager processes list, I also see wuauclt.exe with zero use of the CPU but with 199,292 K of Memory Usage. My experience used to be that wuauclt.exe would eventually disappear after a few minutes when it wasn't update time. Is it a clue to the svchost issue?) So, half of my XP frontal cortex has gotten fall-down drunk. What to do? I'd say you've reached the point of turning off that Auto Update feature. Heinoganda's mentioned that to me a few months back and I haven't had issues since aside from manually having to run Microsoft Update from IE8. The Auto feature is a nice convenience when it works...but those days have gone. Maybe one day we'll get a 3rd party Updater similar to the ones I've mentioned above, but for my foreseeable future it'll just be manually downloading from the catalog and installing. It's not really that huge a hassle and it puts an end to your high CPU usage. Link to comment Share on other sites More sharing options...
glnz Posted January 12, 2018 Author Share Posted January 12, 2018 dencorso and SD73: I have Office Professional 2003 with the Compatibility Pack. Just ran Belarc and I see these: From "Missing Updates": Q4011201 Unrated Microsoft security advisory (KB4011201) Q4011605 Important Microsoft security update (KB4011605) Q4011607 Critical Microsoft security update (KB4011607) From the huge "Installed" list: Compatibility Pack for the 2007 Office system KB2526308[SP] on 10/28/2011 (details...) KB2596904 on 5/10/2017 (details...) KB2825645 on 8/17/2015 (details...) KB2984938 on 5/11/2016 (details...) KB3085549 on 12/12/2015 (details...) KB3213641 on 9/12/2017 (details...) KB3213644 on 9/12/2017 (details...) KB4011063 on 9/12/2017 (details...) KB4011205 on 11/15/2017 (details...) KB4011265 on 11/14/2017 (details...) ◄ That's the last one What do you think? Thanks. Link to comment Share on other sites More sharing options...
SD73 Posted January 12, 2018 Share Posted January 12, 2018 I am the LAST person you should take advice from in these matters, so beware of that. I will say that I had just one update that would never install. That's aside from the kernel patch. I used the overwriteoem switch on both and they installed and never showed up again after a scan for new updates was run. Link to comment Share on other sites More sharing options...
glnz Posted January 12, 2018 Author Share Posted January 12, 2018 SD73 - no - I am the last one to ask. You are only second-to-last. Den - the three "Missing Updates" I cite above are all dated 1/4/2018 in the MS Update Catalog. Should I install them? And did I miss them being listed earlier in these recent pages? Thanks. And I promise not to tell SD73, so he can graduate to "last one to ask". Link to comment Share on other sites More sharing options...
mixit Posted January 12, 2018 Share Posted January 12, 2018 (edited) (Apologies for the slew of quotes, I wanted to get the full context.) 5 hours ago, amberghaji said: here the list, 2371 CPUs affected. List cpu affected.txt 5 hours ago, SD73 said: That is a pretty complete list. Where did you find it? I thought I was home free with my FSB processor, but it is on the list. 5 hours ago, amberghaji said: I find it here: https://downloadcenter.intel.com/download/27431/Linux-Processor-Microcode-Data-File Microcodes updates released for Linux and maybe soon for Windows. All listed CPUs will receive microcodes but not all will be patched for Meltdown/spectre flaw. please read notes included in intel download. 4 hours ago, amberghaji said: According with this only the more recent CPUs will be patched for the flaws. check the list:https://www.bleepingcomputer.com/news/security/intel-releases-linux-cpu-microcodes-to-fix-meltdown-and-spectre-bugs/#comments Since 2013?https://en.wikipedia.org/wiki/Intel_Core It sure would be nice to have a list like that for Meltdown/Spectre, but unfortunately the fact that a CPU is on this list doesn't mean that it's vulnerable to them, just that it has had a microcode update released for it. If you scroll down the downloadcenter.intel.com page and look at Other Versions on the left-hand side, you'll see that there have been many previous microcode releases dating from years before anyone knew about these vulnerabilities, It's a cumulative release and the list you posted simply reflects that, most of the updates included in it are from years ago. As you correctly stated in the end, only the more recent CPUs will be patched for these particular vulnerabilities. EDIT: Just to be clear, I'm not getting on your case or anything. I myself also misunderstood at first what the list actually meant, because I was first directed to it from a site that flat out claimed this was a list specifically for Meltdown/Spectre... Edited January 12, 2018 by mixit 1 Link to comment Share on other sites More sharing options...
glnz Posted January 12, 2018 Author Share Posted January 12, 2018 (edited) den - thanks - installed these last three, and looks like they worked! I had missed that part of bersaglio's list and also your quote box just above didn't show on my other browser at work. Well, this month was something! Thanks! See you next month! Edited January 12, 2018 by glnz 1 Link to comment Share on other sites More sharing options...
Dave-H Posted January 12, 2018 Share Posted January 12, 2018 If you have the same Office configuration as me, you should now have installed KB4056941, KB4056615, KB4011201 (for Office Suites), KB4011607 (Office Compatibility Pack), and KB4011605 (Office Compatibility Pack). There are also three .NET security updates, KB4054173 (.NET 4.0), KB4055229 (.NET 3.0), and KB4054178 (.NET 2.0). If you haven't got those installed, your system will probably still try to find them, assuming you have those .NET versions installed of course. If your CPU usage is still high that will probably be the reason. Personally I switched off automatic updates as soon as I started using the POSReady hack, as I didn't want to risk any possibly incompatible updates downloading and installing without my knowledge. Link to comment Share on other sites More sharing options...
wyxchari Posted January 12, 2018 Share Posted January 12, 2018 (edited) 14 hours ago, amberghaji said: here the list, 2371 CPUs affected. List cpu affected.txt I repeat again. Meltdown and Spectre only affect processors without FSB. In that list appears until the Pentium III . It is a list of updated microcodes, not of processors affected by Spectre. Edited January 12, 2018 by wyxchari Link to comment Share on other sites More sharing options...
SD73 Posted January 12, 2018 Share Posted January 12, 2018 1 hour ago, wyxchari said: I repeat again. Meltdown and Spectre only affect processors without FSB. In that list appears until the Pentium III . It is a list of updated microcodes, not of processors affected by Spectre. Thanks for reading the fine print! 1 Link to comment Share on other sites More sharing options...
glnz Posted January 12, 2018 Author Share Posted January 12, 2018 (edited) 5 hours ago, Dave-H said: If you have the same Office configuration as me, you should now have installed KB4056941, KB4056615, KB4011201 (for Office Suites), KB4011607 (Office Compatibility Pack), and KB4011605 (Office Compatibility Pack). There are also three .NET security updates, KB4054173 (.NET 4.0), KB4055229 (.NET 3.0), and KB4054178 (.NET 2.0). Dave-H - thanks for good double-check list! Yes, Belarc Advisor now shows that I have all. It still amazes me that, each month, we need to install both the IE8 update and (in my case with Office 2003) the Office Compatibility updates to make WU-MU calm down and stop annoying the CPU. What's the danged connection anyway? And if WU-MU/yellow shield get so hot and bothered when they're missing, then why don't WU-MU/yellow shield just SAY SO and pull the updates out of MS so we don't have to go looking for them all over town? Is this any way to run an airline? Edited January 12, 2018 by glnz Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now