Over 1 million tech questions and answers.

Windows Server 2012 update KB to mitigate Spectre and meltdown Vulnerability

Q: Windows Server 2012 update KB to mitigate Spectre and meltdown Vulnerability

Hi ,

As we know about the Spectre and meltdown Vulnerability, to mitigate these Vulnerability we need to apply the Windows OS patches.
i didn`t found any KB update released for the Server 2012, can anyone suggest when this will be released or share KB no if it already released.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002

Shailendra Dev

Read other answers
RELEVANCY SCORE 200
Preferred Solution: Windows Server 2012 update KB to mitigate Spectre and meltdown Vulnerability

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 96.8

Security researchers have disclosed a set of security flaws that they said could let hackers steal sensitive information from nearly every modern computing device containing chips from Intel, Advanced Micro Devices and ARM Holdings.
One of the bugs is specific to Intel but another affects laptops, desktop computers, smartphones, tablets and internet servers alike. - Intel and ARM insisted that the issue was not a design flaw, but it will require users to download a patch and update their operating system to fix. - "Phones, PCs, everything are going to have some impact, but it'll vary from product to product," Intel CEO Brian Krzanich said yesterday. 

A:Meltdown & Spectre Vulnerability..Any known way to prevent this?

Operating systems have to be patched. Linux patches are out now, Windows is expected to be patched Update Tuesday next week.
 
Patches and other mitigations have been released for Server versions of Windows:
 
https://support.microsoft.com/en-us/help/4072698/windows-server-guidance-to-protect-against-the-speculative-execution-s
 
https://www.bleepingcomputer.com/news/security/list-of-meltdown-and-spectre-vulnerability-advisories-patches-and-updates/

Read other 34 answers
RELEVANCY SCORE 94.8

I have a Winbook N22 running Windows 10.  I don't see it listed in the security advisory for Meltdown/Spectre (LEN-18282).   I see a reference to N22P in the advisory, but that appears to be a different laptop. Does anyone know if it is vulnerable and have heard that a fix is on the way? Thanks!

Read other answers
RELEVANCY SCORE 86.4

Microsoft continues to work diligently with our industry partners to address the Spectre and Meltdown hardware-based vulnerabilities. Our top priority is clear: Help protect the safety and security of our customers? devices and data. Today, I?d like to provide an update on some of that work, including Windows security update availability for additional devices, our role in helping distribute available Intel firmware (microcode), and progress driving anti-virus compatibility.

Additional steps being taken to address Spectre and Meltdown vulnerabilities
Windows devices need both software and firmware updates to help protect them against these new vulnerabilities. Recently we added software coverage for x86 editions of Windows 10, and we continue to work to provide updates for other supported versions of Windows. You can find more information and a table of updated Windows editions in our Windows customer guidance article. We will update this documentation when new mitigations become available.

While firmware (microcode) security updates are not yet broadly available, Intel recently announced that they have completed their validations and started to release microcode for newer CPU platforms. Today, Microsoft will make available Intel microcode updates, initially for some Skylake devices running the most broadly installed version of Windows 10 ? the Windows 10 Fall Creators Update ? through the Microsoft Update Catalog, KB4090007. We will offer additional microcode upd... Read more

Read other answers
RELEVANCY SCORE 85.6

I bought a gaming class system for quick response and speed for everyday applications. Now with the fixes to the Intel I7 micro code its noticably slower both starting and responding to common site and applications I used every day over and over.  The I7 is no longer what it was and its not my fault nor much I can do. This was an issue for at least 5 generations of CPU's and Intel never fixed it in their designs and now we have to live with a work around patch that a major impact to performance.





T520 Model 4239 Intel(R) Core(TM) i7-2860QMbr>; Nvidia NVS 4200M Win 10 64bitZ70-80 I7 - 5500U 16GB GB - 1TB HD Win 10 64bit FHD 17.3", G840 w/2GB

Read other answers
RELEVANCY SCORE 83.6

Earlier today i Decided to give  Lenovo uk Tech support a call,  i want to know if my  ideapad Z580 was possibly on the vulnerable list for Meltdown & Spectre? Only to my complete astonishment the guy i spoke with said he had never even heard of Meltdown & Spectre, and had no idea what i was even talking aboutuntil he looked it up, then he just said to me  i wouldn't worry about it i were you,  W T F Lenovo.  So does anyone on here know if the ideapad Z580 is affected at all, I can't see it listed anywhere.   

Read other answers
RELEVANCY SCORE 81.6

As per the recently reported Microsoft Windows vulnerability in our environment(Windows Server 2012R2/Windows Server 2008R2/ Windows 10/ Windows 8.1/ Windows 10) described as  ?A vulnerability in the Microsoft Windows caused by an error
in NTFS Master File Table device, a remote attacker could cause the system to crash?.

Kindly advise what are the Windows updates/patches to be deployed for to secure an IT infrastructure.

Furthermore, Microsoft recommendations & best practices to mitigate this vulnerability.

Read other answers
RELEVANCY SCORE 80

Recently bought a new msi gt62vr 7re gaming laptop and I'm quite terrified about the news...What should I do?Should I even worry?
 

 
MSI has just released a new BIOS today with:

;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; ;; ;; ;; MSI BIOS Release Notes ;; ;; ;; ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
 
Model : MS-16L2 (KBL)
MKT Name : GT62VR 7RD / GT62VR 7RE ;****************************************************************************; New BIOS : E16L2IMS.30C
ROM CheckSum : 2FCDH
Release Date : 2018/1/9
 
;--------------------------- Description ------------------------------------;
 
Update CPU microcode.
 
 

 

 
But I'm honestly quite scared of doing it after going through the instructions...What should I do?
 

 
 
Do you think I should even bother and risk updating the BIOS?I'm kind of thinking that the risk that I break something is higher than the risk that I get hacked with the Spectre vulnerability...I've never ever updated BIOS and I'm unable to take my laptop to any technician because of my disability.

A:Meltdown/Spectre BIOS update

MSI has a BIOS update (version E16L2IMS.30C) which addresses the recently discovered security flaw in Intel. ARM, and AMD processors.  This was released on 01/09/2018.  Is this the update you are considering?
 
How did you become aware of this update?
 
It was recently announced that Intel (and other manufacturers)  has a large security problem with their CPUs.  The BIOS update offered by MSI addresses this issue, Microsoft has released a update to address this as well.
 
Updating the BIOS (also known as flashing the BIOS) was fraught with potential problems which left enthusiasts wary of updating.  It had become the accepted norm not to update the BIOS unless there was a hardware change which required a BIOS update to resolve the issue.  But as you have read above there are now more important reasons to update the BIOS.  It is easier to do now, but you need to have a firm understanding of the steps involved in the process.  Have you read through the instructions in the manual for this computer?

Read other 20 answers
RELEVANCY SCORE 79.2

I have noticed since I updated my system because of the Spectre and Meltdown bug that my SSD's are not getting the same speeds as they were. I downloaded AS SSD benchmark previously and had checked my SSD's and they normally had run at around 450 mbps and 550 mbps. I have 3 SSD's in my system and of course have them all set to AHCI in the BIOS. I downloaded and flashed the new BIOS from Gigabyte's page. The bios version is named F23f (Update Intel ME for security vulnerabilities). Also downloaded and installed the new Chipset driver with the info on the side that says:Intel Management Engine Interface
(Note) Please update the latest BIOS for ME Firmware before installing this driver.
Update Intel ME for security vulnerabilities
Installed the new patch from Microsoft to Windows 10 1709 version KB4054517. I now have been experiencing slower SSD speeds especially for the "Write" speeds. "Read" speeds seem to be the same, if not slightly slower. Is anyone else noticing this? Thanks.
 

Read other answers
RELEVANCY SCORE 79.2

i'm told by various other forums and newsletters that along with the Microsoft update - installed yesterday - we also need a BIOS update (from manufacturers) with some kind of code from Intel, to fix the above flaws in our CPUs.
i searched the Toshiba downloads and updates page and the only BIOS updates are from 2012.
any news on Toshiba releasing a solution for this?

Read other answers
RELEVANCY SCORE 79.2

I can't apply Microsoft updates to address the Meltdown/Spectre vulnerabilities until there is an update to the BIOS software from Lenovo. I have reviewed the support page that lists models targeted for updates, and I don't see mine listed: https://support.lenovo.com/us/en/solutions/len-18282 This is my main personal laptop, which I use for a lot of important tasks. If I can't apply this critical security update then it's worthless to me. This is not a very old machine, I would expect there to be some acknowledgement of it on that support page, but as far as I can see only newer Yoga models are being targeted for firmware patches. Please advise whether Lenovo intends to address this issue on this model.

Read other answers
RELEVANCY SCORE 78.4

We are attempting to automate the BIOS upgrades to address CVE-2017-5715. This has been no problem thus far on our other Lenovo models that have released updates. However, with the X250 (both touch and non-touch) we receive the following error:   error 180 - bios part numbers do not match It actually does not matter what version of the BIOS we try to flash, lower or higher. The embedded controller will update through the automation but the BIOS will not. The weird thing is if you manually run WINUPTP64.exe it will update without issue. This is not a realistic solution with the number of devices we have. I will say that our X250s have an OEM only BIOS version installed which I suspect might be the issue?   1.19 1.19 (N10ET40W) 1.13 (N10HT14W) For factory use  

A:X250 And Spectre/Meltdown - Cannot Automate BIOS Update

I'll add that this BIOS version is on at least 435 of our X250s.

Read other 1 answers
RELEVANCY SCORE 78.4

Will I need to update my IdeaCentre 71-25ISH motherboard's BIOS for Spectre vulnerabilities? I read here in the Reading Privileged Memory (https://support.lenovo.com/us/en/solutions/len-18282) with a Side Channel that Variant 2: Branch target injection (CVE-2017-5715)? Requires processor microcode updates  Requires operating system updatesVulnerable to Spectre attackSo does "Requires processor microcode updates" = motherboard BIOS update?  I see a line of infomation of stating Product: IdeaCentre 700Status: AffectedMinimum Version Required to Fix: FWKT86A  Link to Update:  http://support.lenovo.com/downloads/DS104868 Last Updated: 1/7/2018 I am posting here today because Monday Jan. 8 '18 I was told by Lenovo Support over the phone "there should be no need to update the motherboard BIOS". 

Read other answers
RELEVANCY SCORE 78.4

HelloI would like to install the O2TJY45USA firmware update for my Ideacentre 510-15IKL. I am running Linux Mint on the desktop. I could find the Windows10 updater .EXE on the pcsupport.lenovo.com website  so far. Does anybody knows if there is a bootable .ISO that I could use without Windows. The updater .EXE provided in the download package is called wflash2.exe which indicates that it is designed for the use with Windows10 and not FreeDOS or alike. Many thanks for your help

Read other answers
RELEVANCY SCORE 78.4

Hello Lenovo team, We, the users of Y510P hereby request our laptops not be exclued from the security updates regarding Spectre/Meltdown. This is a serious issue and we need a serious support from your side.

Read other answers
RELEVANCY SCORE 78.4

As I know, Intel already published microcode updates for all Haswell CPU's, including mobile. At least, ASUS support confirmed, that BIOS of all MB for Haswell will be updated. Updated microcodes for Linux are already available. What about BIOS update for the Yoga 2 Pro with i7-4500U? Thank you in advance.

Read other answers
RELEVANCY SCORE 77.6

Is there an estimate of when the BIOS update for the YOGA 910-131 KV 80VF notebooks, to address the Meltdown and Spectre security vulnerabilities, will be available?  Will a notification be pushed out to users with 910s, or do I need to keep checking for availability myself?  Thanks.

Read other answers
RELEVANCY SCORE 76.8

Hello together, does anyone know why the T430s Type 2356 is missing on the BIOS Update list at the following page?https://support.lenovo.com/de/de/solutions/len-18282 So far, only 2352, 2353, 2354 and 2355 are listed an scheduled for february. Will there be an update for the 2356? Thanks in advanceRegards

Read other answers
RELEVANCY SCORE 76.8

Hello all, when running the BIOS update utility with BIOS version GFET59WW from 3/13/2018 I get an error, that the firmware file does not fit the machine. Please support a valid BIOS update for Helix 3701. Thank you in advance! Best regards Gerrit 

Read other answers
RELEVANCY SCORE 75.2

I know this isn't the newest model, but I just purchased it new (on offer) by mid 2015, so I just have it for a good 2 years! I don't see it on the list of affected models, while it CLEARLY IS affected. Will we see a BIOS update to target the Spectre vulnerability? I have always taken Lenovo for giving good support for their hardware. Surely I will have to consider a different brand, if I cannot count on security updates for hardware just a little over 2 years old. (I'm taking suggestions as to which manufacturer is giving better support). At least put all models affected on the list, and just admit that they will not receive an update. So at least we know what we can expect!

A:Yoga 2 13 20344 Spectre vulnerability BIOS update

Could you please publish URL with the list of the vulnerable notebooks? I can't find it. Thank you in advance.

Read other 1 answers
RELEVANCY SCORE 72.8

Hi there
Will the W2012 Server get the 8.1 type of update --anybody know. There seems to be a deafening silence on W2012 server which IMO is strange as it is STREETS ahead of the really horrible W2008 server.

W2012 server has options though already to avoid the whole metro stuff but it would be nice to add some of the proposed customisation features to it.

I'm also not hearing anything about whether W8 ENTERPRISE will also be upgraded -- IMO this is MORE important even than the HOME versions if Ms wants businesses to adopt W8. Boot to the standard desktop is really a MUST for businesses - by also pinning standard programs to the quick launch task bar and / or the desktop a lot of problems of User training can be avoided.

Cheers
jimbo

A:Windows 2012 server to get update or not - anybody

I am wondering this myself. Also, how will future support work for users who do not upgrade to 8.1? Nothing in 8.1 looks to have much of an effect on someone who uses a SMR and the desktop exclusively. Should I bother upgrading and risk having some type of issue with my work PC?
I recently rolled out a 6 PC trial with Windows 8 and Start8 (Start8 with GPO), and am really concerned 8.1 could break something with GPO or Start 8. Ugg, MS.

Read other 15 answers
RELEVANCY SCORE 72.4

Hello. I have followed the directions as mentionned here: https://download.lenovo.com/pccbbs/mobiles/gmuj26us.txt I started by trying to install it silently but it didn't work. Then I tried to install it manually and it worked correctly.I grabbed another T540P to try it silently again but the same issue is happening. Here is the content of the Winuptp.log:[2018/1/11 14:8:55]OS = Windows 10 64bitFlash module cannot be found. It obviously cannot see the flash EXE even though I made sure it was in the same folderfyi I am running %filepath%\WINUPTP64.EXE -s Any help would be appreciated.Thanks! 

Read other answers
RELEVANCY SCORE 71.2

Last update: 4th January 2018 @10.44pm GMT

CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Meltdown and Spectre) Windows antivirus patch compatibility

 

Read other answers
RELEVANCY SCORE 71.2

I've already seen something similar to this on here so apologies if it's a duplicate... BUT this one seems a bit easier to understand than the one I saw last week...
 

Read other answers
RELEVANCY SCORE 71.2

where can i find the Windows 7 and 8.1 fixes for Meltdown and Spectre CPU flaws

Read other answers
RELEVANCY SCORE 71.2

We have a server that was put in by a company that likely no longer exists, and may not have even been a legitimate company in the first place. (Server came with the OS installed, but we did not get any documentation on the authenticity of the Windows license, nor is there a sticker on the machine... seems fishy to me.)

The server runs Windows Server 2012.
It will not update, as it says that updates are disabled, and does not allow me to enable them, as they are 'controlled by the administrator'.

What's worse, is that any computers joined to the domain that this server controls, are also plagued by the inability to update.

There appears to be the following problems:
1) Phantom update server - The computers that are members of the domain try and update from some source elsewhere than the regular Windows Update servers from Microsoft.
2) The computers do not let me change update settings if they are joined to the domain. They say the setting is 'controlled by the administrator'.
3) The server will not get updates, as they are disabled, and does not let me enable them because they are 'controlled by the administrator.'

I am the administrator so that doesn't make sense.

I can't seem to figure out why this is the case, as I went into the group policy editor on the server and changed all the Windows Update settings I could find back to 'not configured'.

I restarted the server, and the workstations, and still, I cann... Read more

A:Windows Server 2012 Cannot Update: Controlled by Administrator?

Really nasty -- sorry to hear of your fate.

You might check out How to disable GPOs.
 

Read other 1 answers
RELEVANCY SCORE 70.4

Last month, I shared some insights into what we learned early on in helping customers respond to the industry-wide vulnerabilities of Spectre and Meltdown. A top question we continue to hear from IT professionals around the world is how can they best assess if the Windows devices across their enterprise are protected?

These hardware-based security vulnerabilities are a new challenge for all of us. Customers? devices require both updates to CPU microcode (firmware) and the Windows operating system, and anti-virus software must be compatible with the latest Windows updates.

To help IT professionals everywhere, we have added new capabilities to our free Windows Analytics service1 to report the status for all the Windows devices2 that they manage. These new capabilities include:
Anti-virus Status: Some anti-virus (AV) software may not be compatible with the required Windows Operating System updates. This status insight indicates if the devices? anti-virus software is compatible with the latest Windows security update3.
Windows Operating System Security Update Status: This Windows Analytics insight will indicate which Windows security update is running on any device and if any of these updates have been disabled. In some cases, IT Administrators may choose to install the security update, but disable the fix. Our complete list of Windows editions and security updates can be found in our Windows customer guidance article.
Firmware Status ? This insight provides details abo... Read more

Read other answers
RELEVANCY SCORE 69.6

Hi, On the list of BIOS update for Meltdown and Spectre, I can't find out the status of Lenovo M81 7517 and Lenovo M81 7517 B2U. Does it mean there is no impact for those 2 desktop? Thanks 

Read other answers
RELEVANCY SCORE 69.2

Hi All,
A week ago we had tried to install ATA Gateway 1.8 on our server core Domain Controllers but it had failed. This bug was apparently fixed in 1.8 update 1 (listed
here)
However now when we install it on core the installer fails without erroring. I have looked into the ATA deployment log which has the following in it:
[6A6C:5944][2017-08-09T21:59:54]i000: 2017-08-09 20:59:54.1044 27244 5   Debug [\[]DeploymentModel[\]] [\[]DeploymentAction=Upgrade[\]]
[6A6C:5944][2017-08-09T21:59:54]i000: 2017-08-09 20:59:54.4013 27244 5   Error [\[]GatewayBootstrapperApplication[\]] Failed to create deployment manager [\[]exception=System.ArgumentNullException: Value cannot be null.
Parameter name: path1
   at System.IO.Path.Combine(String path1, String path2)
   at Microsoft.Tri.Gateway.Deployment.Bundle.UI.Application.GatewayUpgradeDeploymentConfiguration.GetMandatoryConfiguration(String installationPath)
   at Microsoft.Tri.Gateway.Deployment.Bundle.UI.Application.GatewayUpgradeDeploymentConfiguration..ctor(Engine engine, String installationPath)
   at Microsoft.Tri.Gateway.Deployment.Bundle.UI.Application.GatewayDeploymentModel.CreateDeploymentConfiguration(Engine engine)
   at Microsoft.Tri.Deployment.Bundle.UI.Application.DeploymentModel..ctor(BootstrapperApplication bootstrapperApplication, ProductComponent productComponent, String productFullShortName, String productFullLongName, String productFullLongDispl... Read more

Read other answers
RELEVANCY SCORE 67.6

Hi;
I am having the KMS Server with Server 2012 KMS Key,which is hosted on Windows server 2012 R2.

We need to update the KMS Server 2K12 Key to 2K16 KMS Key, Is there any way to Get the detail that the key will activate these OS Versions?

MBAM Report Feature Error Alert

Read other answers
RELEVANCY SCORE 65.2

Has anyone write step by step procedure to patch this issues yet ??
Those already done,,a little sharing are appreciated !!

Regards
azls73
 

Read other answers
RELEVANCY SCORE 65.2

Hi i dont know a lot about computers or the workings but with the scare of meltdown and spectre can we not get a new mother board and proccessos fitted in our old pc or is it not worth the faffing about and cost or what is the chance of little old me getting hacked just surfing the net not going on naughty sights like porn ect thanks . ps just by a new pc
 

A:Spectre and Meltdown

Chances of you being infected, and/or your data compromised with malware exploiting meltown and spectre vulnerabilities, are close to none.
Keep your software updated and don't be click happy. Stay safe!
 

Read other 0 answers
RELEVANCY SCORE 65.2

Hi I don't see my laptop B50-80 on the list in: Lenovo Security Advisory: LEN-18282 (https://support.lenovo.com/se/pl/solutions/len-18282)Why? Does it means that there won't be a upgrade for this laptop?

Read other answers
RELEVANCY SCORE 64.4

Hello people- I just heard about the security flaw out there called Spectre or meltdown-- My problem is this-- I am working on an older computer running Windows VISTA- yes you heard right-- My computer has never given me ANY problems- and I stand by the old motto- if it aint broke dont fix it. My memory has 8 GB and it is an HP-Intel core 2 quad cpu 2.33 GHZ- service pack 2 windows vista home premium.
Because I am running Vista- I can no longer get chrome updates- and thus when I try to do the software patch for this new problem- That strict isolation site - is not there and thus I cannot enable it- do you really think this is a problem- or not?? Please advise
P.S. My passwords are extremely strong for all of my important sites-if that matters?
 

Read other answers
RELEVANCY SCORE 64.4
RELEVANCY SCORE 64.4

Hi All

I'm sure you've all been following the news of Meltdown/Spectre.

I'm a (very satisfied) AppGuard user and was wondering if AppGuard can or does help with the issues we are facing with Meltdown/Spectre?

I know you need to install OS patches, firmware updates etc etc but in my case my PC is over 5yrs old and I highly doubt there will be any firmware/BIOS updates so can/will AppGuard help at all protect from these threats?
 

A:AppGuard + Spectre/Meltdown

As long as nothing with a code that tries to exploit meltdown/spectre runs on your system then you are protected. So if appguard or any anti exe, anti malware, antivius, srp, god himself stops the payload you are ptotected and if not you are not protected. Not going to go into details when it stops and when it doesn't because as a user you should already know that.
 

Read other 0 answers
RELEVANCY SCORE 64.4

Hi everyone,
I currently own a Windows XP PC, which I occasionally use for web browsing. Are patches for Meltdown and Spectre vulnerabilities going to be issued for Windows XP, similar to the Wannacry Ransomware? I couldn't find any info about this online.
Regards,
iMacg3

A:Meltdown and Spectre patches?

Unsupported operating systems like XP won't be getting patches.
 
My operating system (OS) is not listed. When can I expect a fix to be released?

Addressing a hardware vulnerability with a software update presents significant challenges and mitigations for older operating systems and can require extensive architectural changes. We are continuing to work with affected chip manufacturers and investigating the best way to provide mitigations, which may be provided in a future update. Replacing older devices running these older operating systems should address the remaining risk along with updated antivirus software.
Note
 
Products currently out of both mainstream and extended support will not receive these OS updates. We recommend customers update to a supported OS version.
We will not be issuing updates for Windows Vista or Windows XP-based systems including WES 2009 and POSReady 2009.
 
 
Although Windows Vista and Windows XP-based systems are affected products, Microsoft is not issuing an update for them because the comprehensive architectural changes required would jeopardize system stability and cause application compatibility problems. We recommend that security-conscious customers upgrade to a newer supported operating system to keep pace with the changing security threat landscape and benefit from the more robust protections that newer operating systems provide.

 
https://support.microsoft.com/en-sg/help/4073757/protect-your-windows-d... Read more

Read other answers