Microsoft Releases Microcode Updates KB4497165 and KB4558130 for Windows 10 to Fix Intel Security Flaws



[ad_1]

New Intel logo

Earlier this year, Intel announced that it had completed software validations on fixes for a number of security flaws affecting many of its processors discovered a couple of years ago. Now Microsoft, together with the chipmaker, has released microcode updates for Windows 10 to fix these issues.

All four issues are related to the now infamous Specter and Meltdown glitches of 2018. They relate to issues with the speculative execution function of many chips and could allow sensitive data to leak.

See also:

Two separate updates have been released through Windows Update. They both address the same issues, but are designed for different versions of Windows 10. Update KB4497165 is for Windows 10 version 1903 (Windows 10 May 2019 Update) and version 1909 (Windows 10 November 2019 Update); KB4558130 update is for Windows 10 version 2004 (Windows 10 May 2020 update)

Microcode updates fix the following four security flaws:

  • CVE-2019-11091 – Microarchitecture Data Sampling Non-Cache Memory (MDSUM)
  • CVE-2018-12126– Microarchitecture Buffer Data Sampling (MSBDS)?
  • CVE-2018-12127– Microarchitecture Charging Port Data Sampling (MLPDS)
  • CVE-2018-12130– Microarchitecture Fill Buffer Data Sampling (MFBDS)

In the case of KB4558130, Microsoft advises that the microcode update should only be installed by people whose computer has the affected processors. You can check out the rather long list here. Interestingly, the same warning has not been issued for update KB4497165, but it’s probably worth taking the advice and checking out the list related to this update here.

Image Credit: Ascannio / Shutterstock



[ad_2]