Like most of the patches I talked about yesterday, this one is available only through the Update Catalog - it won’t be pushed onto your machine. It appears as if this is the first 32-bit version of Windows that has a patch for the Meltdown vulnerability.
Microsoft is continuing to work with affected chip manufacturers and investigate the best way to provide mitigations for x86 customers, which may be provided in a future update. The existing 32 bit update packages listed in this advisory fully address CVE-2017-5753 and CVE-2017-5715, but do not provide protections for CVE-2017-5754 at this time. Will Microsoft provide complete protections in the future?Ī: Addressing a hardware vulnerability with a software update presents significant challenges and mitigations for older operating systems that require extensive architectural changes. Q: I have an x86 architecture and the PowerShell Verification output indicates that I am not fully protected from these speculative execution side-channel vulnerabilities. Microsoft’s Security Advisory ADV180002 has the dirty details in the fine print, point 7: What, you thought 32-bit machines already had Meltdown/Spectre patches? Silly mortal. Win10 Fall Creators Update version 1709 - Cumulative update KB 4073291 brings the Meltdown/Spectre patches to 32-bit machines. Let’s step through the, uh, offerings on Jan. NET patches, we now have a huge crop of new patches, revised older patches, warnings about bugs, and a bewildered ecosystem of Microsoft customers who can’t figure out what in the blue blazes is going on.
0 kommentar(er)
