ML10 Gen9 - CVE-2017-5715 mitigation BIOS update

PaulP-Cambs · ‎03-01-2018

When will you have finished testing Intel's latest microcode update for the Xeon in your ML10 Gen9?

Would be nice to know when to expect the bios update (I had assumed BIOS_1.10 was it but it seems not) or if there is another update I should be applying? Thanks Paul

I have just applied ML10_Gen9_BIOS_1.10_Windows.zip and run Speculation Control check which shows:

Speculation control settings for CVE-2017-5715 [branch target injection]

For more information about the output below, please refer to https://support.microsoft.com/en-in/help/4074629

Hardware support for branch target injection mitigation is present: False

Windows OS support for branch target injection mitigation is present: True

Windows OS support for branch target injection mitigation is enabled: False

Windows OS support for branch target injection mitigation is disabled by system policy: False

Windows OS support for branch target injection mitigation is disabled by absence of hardware support: True

PaulP-Cambs · ‎03-02-2018

The ML10 Gen9 seems to be a very unloved product, doesn't even appear in your spectre/meltdown advisory

https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-a00039267en_us

Unless perhaps it is the ML10 (no version) that states a patch is not yet available? The ML10v2 says patch is available but that's your Gen 8 version I think?