UEFI BIOS Updates For Spectre

Discussion in 'HardForum Tech News' started by rgMekanic, Jan 17, 2018.

  1. rgMekanic

    rgMekanic [H]ard|News Staff Member

    Messages:
    3,837
    Joined:
    May 13, 2013
    With the Spectre vulnerability exposed, Intel is rushing out new microcode, and motherboard manufacturers are working hard to get BIOS updates released. The news today about InSpectre got us thinking, have there been any BIOS updates for our machines, and will there be? It looks like X99 is as far back as Intel is willing to go with microcode updates.

    ASUS has a page you can find here to see if your motherboard has an updated BIOS. Unfortunately only 2 X99 boards appear like they will be getting any love.

    GIGABYTE has a similar page here, unfortunately it does not look like they are going back to X99 at this time, but Gigabyte did tell us several X99 boards are in testing now, and the page will be updated when it becomes available for download.

    MSI's page is available here. So far they have only released updates for Z370, but there is a list of motherboards that will be getting the update.

    ASRock doesn't have a dedicated page that we could find, but its support site shows many new BIOS updates have been released in the last week, with presumably more coming soon. (Update: UEFI/BIOS patch microsite for AsRock.)
     
    Last edited by a moderator: Jan 18, 2018
    rive22 and CrimsonKnight13 like this.
  2. dgingeri

    dgingeri 2[H]4U

    Messages:
    2,830
    Joined:
    Dec 5, 2004
    I'm curious about why the microcode updates are going on. I initially heard that the changes that were needed were at a code level, rather than the CPU level. Is this doing more than the software patches from Microsoft and Linux? Are they absolutely needed if the software fixes are in place?
     
  3. rgMekanic

    rgMekanic [H]ard|News Staff Member

    Messages:
    3,837
    Joined:
    May 13, 2013
    Software fixes work for Meltdown, Spectre requires microcode updates
     
  4. admiralperpetual

    admiralperpetual Limp Gawd

    Messages:
    415
    Joined:
    May 7, 2015
    gigabyte currently going back to z170/b150... not holding my breath on z77 any time soon but i'll risk it I guess
     
  5. dburgo

    dburgo n00b

    Messages:
    40
    Joined:
    Feb 3, 2017
    Awesome, I dont know how you guys find these links but I am plenty thrilled you do. Will share post as to bring you more readers! My Asus x99 - A II wasnt listed yet but I'll keep checking. Thx for helping your readers out. :)
     
  6. Moogle Stiltzkin

    Moogle Stiltzkin Gawd

    Messages:
    815
    Joined:
    Nov 11, 2004
    didn't see Z77 ivy bridge on asus with any bios update... does that mean ivy bridge users have to upgrade o-O: ?
     
  7. rgMekanic

    rgMekanic [H]ard|News Staff Member

    Messages:
    3,837
    Joined:
    May 13, 2013
    No problem, they were a bit hidden on a lot of the manufacturers sites for some reason, but this is info every enthusiast needs, so thank you for sharing it.

    Seems like it, IMO Intel should have to pay every motherboard manufacturer for their time to release BIOS' for every effected system, but it looks like X99 is where they're stopping :/
     
  8. TheHig

    TheHig Limp Gawd

    Messages:
    502
    Joined:
    Apr 9, 2016
    Wow only back to X99 ? I love bang for buck systems and there is a lot left in the tank on older platforms than that!

    I went back to AMD with my personal system because Ryzen turned out to be very good IMO. With this news maybe I’ll sell off the kids intel boards and cpus and go AMD in the whole house. Screw the blue team for this shite. I’m not overly concerned about getting compromised so much as turned off by the way it’s being handled.
     
    qb4ever, trparky and DejaWiz like this.
  9. ranger2990

    ranger2990 n00b

    Messages:
    7
    Joined:
    Nov 14, 2017
    wow only 2 boards from asus.and ones most people wont buy.guess my x99-E won't have to worry about slowing my 5930 down.:)
     
  10. atarione

    atarione [H]ard|Gawd

    Messages:
    1,972
    Joined:
    Mar 17, 2011
    jesus christ... so they are not going to patch sandy / ivy / hasswell .. man screw intel

    k' now I'm super pissed... I'm almost certain my upgrade later this year is ryzen+

    I would encourage intel to reconsider being giant c*cks about this and move that patch plan back at least to sandy bridge.. otherwise maybe I can sue them in small claims court for the 4x systems in my house that are basically junk now?? anyone tried suing intel in small claims court for damages yet?
     
    Red Falcon, Met-AL, trparky and 2 others like this.
  11. dgingeri

    dgingeri 2[H]4U

    Messages:
    2,830
    Joined:
    Dec 5, 2004
    They aren't junk. You just have to be more careful to avoid malware. If the system isn't compromised in other ways, neither of these can be used to gain anything. They can't be used as an entrance to the system, only to gain extra information once the system is compromised. So, for example, my file server, based on a Core i5 2500k, is just fine. It won't get compromised because nobody is going to be surfing the internet on it, so I don't have to worry about Spectre on it at all.
     
  12. Slade

    Slade 2[H]4U

    Messages:
    2,539
    Joined:
    Jun 9, 2004
  13. rgMekanic

    rgMekanic [H]ard|News Staff Member

    Messages:
    3,837
    Joined:
    May 13, 2013
    I 100% agree with both of you. My HTPC is an i7 870 and my wifes machine is an i5 3470, her laptop is Ivy something, my laptop is Sandy something. And my main rig is literally the last one on MSI's list, so I either just made it or I'll be the first one to get the "ah screw it"

    Any new builds coming in here will be AMD, I'm sick of them dropping support on still viable hardware, that 4k Netflix hardware lock, etc.
     
    qb4ever, atarione, Roberty and 2 others like this.
  14. DejaWiz

    DejaWiz Oracle of Unfortunate Truths

    Messages:
    18,841
    Joined:
    Apr 15, 2005
    I'm screwed with all my home systems...
    Z77 and i7
    Z68 and i3
    B250 and Pentium G1820
    HM77 and i5m

    Fuck.
     
    Travolta and trparky like this.
  15. DKS

    DKS Limp Gawd

    Messages:
    467
    Joined:
    Oct 14, 2006
    Asus has updated Bios for the X299 family. Some have been up for a couple of days. Some are just posted today.
     
  16. alxlwson

    alxlwson You Know Where I Live

    Messages:
    6,046
    Joined:
    Aug 25, 2013
    Nice. My laptop will definitely not be getting an update. It spends all it's "on" time on public hotel networks.
    Guess I need to remove all personal info from it, or is this basically a second line of defense?
     
  17. ep0x73

    ep0x73 2[H]4U

    Messages:
    2,562
    Joined:
    Sep 5, 2013
    I see a bios update for my Gigabyte X87 board but it's for MATS tables and OS compatibility, first bios update in 3 years and it's a beta, hmm
    Maybe they will release a F10 soon that is not a beta.
     
  18. CrimsonKnight13

    CrimsonKnight13 Lord Stabington of [H]ard|Fortress

    Messages:
    7,053
    Joined:
    Jan 8, 2008
    Last edited: Jan 17, 2018
  19. mullet

    mullet [H]ard|Gawd

    Messages:
    1,629
    Joined:
    Aug 19, 2004
    Intel just cut off their nose in spite of their face.

    AMD from now on. Man o man am I pissed off. Pay a premium for a mobo and this is how they repay you.
     
    trparky likes this.
  20. jardows

    jardows [H]ard|Gawd

    Messages:
    1,615
    Joined:
    Jun 10, 2015
    Welp, I guess I'm going to have to upgrade now. Start saving the pennies for a Ryzen CPU/MOBO and the Benjamins for the DDR4 RAM!
     
    qb4ever, trparky and alxlwson like this.
  21. MV75

    MV75 [H]ard|Gawd

    Messages:
    1,025
    Joined:
    Nov 13, 2007
    Man, with the naming schemes they have these days, thank goodness cpu-id shows me the model of my board, too many that are just one letter difference. Strix z270f gaming btw. Has an update, but it slows the computer like the other software patch does wouldn't it? I don't think I'll update it, currently has a 1009 bios on it from mid last year.
     
  22. dugn

    dugn Limp Gawd

    Messages:
    398
    Joined:
    Aug 16, 2009
    As someone with 4+ Z87 and Z97's - all on Windows 7 with plenty of life left in them - it looks like EVGA might do us a solid:
    https://forums.evga.com/Attention-E...-for-your-BIOS-security-patches-m2747985.aspx

     
    Last edited: Jan 17, 2018
  23. dburgo

    dburgo n00b

    Messages:
    40
    Joined:
    Feb 3, 2017
    I read somewhere that Intel pulled back on Broadwell E as it had issues. The only issue I have is Dual Intelligent processor 5 isn't working. Luckily I'm on a new rebuild so any malware so to speak of hasn't seethed its way into my rig. I think it's crummy if they dont provide Broadwell support. I paid $230+ for my Asus X99 A-II not even over year ago! Too many black hats in the world these days, it really looks bad for the white hats having to deal with so many hacks going on daily. They really started 2018 with oozy death. :/
     
  24. atarione

    atarione [H]ard|Gawd

    Messages:
    1,972
    Joined:
    Mar 17, 2011

    well 3x of the systems are basically junk because people are getting on the internet with them.. If I can't get a patch for spectre then they are basically useless to me for what I needed them for..

    I'm going to ditch my HTPC (don't use it much anyways.. have chromecast and roku) and upgrade my wife's and my own pc's to AMD based setups... 90~% sure that is what i'm going to do .. if i can't get patches for her sandybridge rig and my Hasswell one..

    and I'm going to be mad (read as not buying intel) at intel for a LOOOOOOOOOONG TIME about it.
     
  25. /dev/null

    /dev/null [H]ardForum Junkie

    Messages:
    14,048
    Joined:
    Mar 31, 2001
    I already see bioses for at least some models of Thinkstation S30 (sandy bridge capable...) -- 6 year old+ machines getting bios updates...!

    This is why I lean more towards buying pre-builts off of Ebay these days.

    My wifes self built Q8200 has been replaced by an Ivy bridge Optiplex 7010. Bios update? Yep! Price? $94 shipped on Ebay.

    Meanwhile, I"m guessing my Gigabyte/MSI/ASRock Haswell self-built machines won't see anything.

    Edit: Bios Status:
    Nothing since 2014 for my MSI (Z87-G41 PC Mate)
    Nothing since 2016 for my ASrock Z97 Extreme6 (Extremely unsupported apparently)
    Nothing since 2016 for my Gigabyte Z87-UD3H

    SoL
     
    Last edited: Jan 18, 2018
  26. risc

    risc Handle with Kid Gloves

    Messages:
    188
    Joined:
    May 18, 2017
    Intel Extreme Z77 motherboard with 3770 here, they wont patch their own product. (n)
     
    qb4ever, trparky and Libast like this.
  27. rudy

    rudy [H]ardForum Junkie

    Messages:
    8,580
    Joined:
    Apr 4, 2004
    I don't suppose there is any hope for z68?
     
  28. Dead Parrot

    Dead Parrot 2[H]4U

    Messages:
    2,464
    Joined:
    Mar 4, 2013
    Gigabyte Z77 system here. Wonder if some of the lawsuits will prompt Intel to go farther back then their current plans? Maybe Intel should have to file an environmental impact statement on the excess e-waste generated by not patching farther back.
     
    trparky likes this.
  29. MrDeaf

    MrDeaf Limp Gawd

    Messages:
    428
    Joined:
    Jun 9, 2017
    I have a Z77 from Asus and Gigabyte. The Asus is even their flagship ITX model and they choose not to issue bios updates?

    Yeah... okay...
     
    trparky, mullet and DejaWiz like this.
  30. Riccochet

    Riccochet Off Topic Award

    Messages:
    21,693
    Joined:
    Apr 11, 2007
    Looks like Asrock has updates for all their latest boards going back to Z170, but nothing older.

    I've submitted a support request asking about older boards. We shall see. No reason they shouldn't update at least back to Haswell.
     
  31. theplaidfad

    theplaidfad Lurker

    Messages:
    1,053
    Joined:
    Apr 24, 2008
    Asus does not seem to have a BIOS update available yet for my z170i Pro Gaming board. I'll check daily from this point on.
     
  32. focbde

    focbde Gawd

    Messages:
    546
    Joined:
    Jan 31, 2008
    I am sure there will be plenty of people on this forum as well who simply don't want the update - given the fact that there is a performance hit and likelihood of the exploit being, um, exploited.

    Thsi has the added effect also that for those who do not want the update, they can only update to BIOS version XX before the microcode is included... so any future updates they may want are out of reach :/
     
  33. Hitti2

    Hitti2 Limp Gawd

    Messages:
    335
    Joined:
    Dec 3, 2016
    Wait, if updated specifically asrock, will any performance be decreased and if so can UEFI be reverted?

    My z75 pro3 isn't listed yet.
    http://www.asrock.com/support/index.asp?cat=BIOS

    So before you guys do update, make sure you can revert back as IBM did this BIOS lock to reverting the BIOS to older version and pulled all old BIOS's prior of the latest removing AHCI option from one of their boards I owned.

    Lesson learned and just passing this along to one who cares. Don't jump the gun like I did without reading.
     
  34. bluesynk

    bluesynk Limp Gawd

    Messages:
    206
    Joined:
    Oct 5, 2014
    Gigabyte had a bios for my board right away, and it's an odd ball z170-mx matx board. Also had a firmware update for the issue as well. Not sure what that did?
     
  35. Maxx

    Maxx [H]ard|Gawd

    Messages:
    1,451
    Joined:
    Mar 31, 2003
    Specifically,

    "Microsoft says firmware updates are only required to protect against what’s being described as Spectre variant 2."

    "AMD said the second Spectre variant 'is applicable to AMD' processors and that it would issue patches for its Ryzen and EPYC processors starting this week and older chips in the coming weeks."
     
    Last edited: Jan 18, 2018
    Nobu likes this.
  36. FrgMstr

    FrgMstr Just Plain Mean Staff Member

    Messages:
    48,317
    Joined:
    May 18, 1997
  37. Gweenz

    Gweenz [H]ard|Gawd

    Messages:
    1,216
    Joined:
    Dec 18, 2003
    LOL at everyone thinking their z97/77 boards are going to get an update and the motherboard manufacturers aren't going to use this as an excuse to cash in on people buying new boards.
     
  38. /dev/null

    /dev/null [H]ardForum Junkie

    Messages:
    14,048
    Joined:
    Mar 31, 2001
    Well, like I said my wife's $94 (used) optiplex 7010 (I can't imagine that was even $1k new for the whole machine) has an update....That is ivy based...
     
  39. SonicTron

    SonicTron Snopes is My Fact Checker

    Messages:
    5,894
    Joined:
    Mar 9, 2000
    RIP my P67 system
     
    mullet likes this.
  40. GoodBoy

    GoodBoy [H]ard|Gawd

    Messages:
    1,401
    Joined:
    Nov 29, 2004
    I cannot see Intel not releasing microcode for as far back as sandy bridge.. there are plenty of servers out there with Xeon's that old that are still in production use by many companies. If they don't they will really be shooting themselves in the foot.

    Let's give them a few weeks to get them out. The downside is that we are also at the mercy of the mobo manufacturer putting out the updates. ASUS damn well better put out a bios for my x58 and the P8BWS that runs my ESXi...

    Some bit of good news, if you run ESXi or vmware workstation, those already have some microcode updates that load even when the actual bios isn't patched, that is used in the virtual machine. I think this was one of the main ways these exploits were afraid of being used... The Cloud providers likely have notices out stating their patch levels and how they've addressed this. (This is all virtual and usually the backend equipment can be shared by multiple customers. This was a primary way data could have been stolen).
     
    Last edited: Jan 18, 2018