Over 1 million tech questions and answers.

Windows Server 2012 update KB to mitigate Spectre and meltdown Vulnerability

Q: Windows Server 2012 update KB to mitigate Spectre and meltdown Vulnerability

Hi ,

As we know about the Spectre and meltdown Vulnerability, to mitigate these Vulnerability we need to apply the Windows OS patches.
i didn`t found any KB update released for the Server 2012, can anyone suggest when this will be released or share KB no if it already released.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002

Shailendra Dev

Read other answers
RELEVANCY SCORE 200
Preferred Solution: Windows Server 2012 update KB to mitigate Spectre and meltdown Vulnerability

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 85.2

Earlier today i Decided to give  Lenovo uk Tech support a call,  i want to know if my  ideapad Z580 was possibly on the vulnerable list for Meltdown & Spectre? Only to my complete astonishment the guy i spoke with said he had never even heard of Meltdown & Spectre, and had no idea what i was even talking aboutuntil he looked it up, then he just said to me  i wouldn't worry about it i were you,  W T F Lenovo.  So does anyone on here know if the ideapad Z580 is affected at all, I can't see it listed anywhere.   

Read other answers
RELEVANCY SCORE 81.6

As per the recently reported Microsoft Windows vulnerability in our environment(Windows Server 2012R2/Windows Server 2008R2/ Windows 10/ Windows 8.1/ Windows 10) described as  ?A vulnerability in the Microsoft Windows caused by an error
in NTFS Master File Table device, a remote attacker could cause the system to crash?.

Kindly advise what are the Windows updates/patches to be deployed for to secure an IT infrastructure.

Furthermore, Microsoft recommendations & best practices to mitigate this vulnerability.

Read other answers
RELEVANCY SCORE 80.4

I have noticed since I updated my system because of the Spectre and Meltdown bug that my SSD's are not getting the same speeds as they were. I downloaded AS SSD benchmark previously and had checked my SSD's and they normally had run at around 450 mbps and 550 mbps. I have 3 SSD's in my system and of course have them all set to AHCI in the BIOS. I downloaded and flashed the new BIOS from Gigabyte's page. The bios version is named F23f (Update Intel ME for security vulnerabilities). Also downloaded and installed the new Chipset driver with the info on the side that says:Intel Management Engine Interface
(Note) Please update the latest BIOS for ME Firmware before installing this driver.
Update Intel ME for security vulnerabilities
Installed the new patch from Microsoft to Windows 10 1709 version KB4054517. I now have been experiencing slower SSD speeds especially for the "Write" speeds. "Read" speeds seem to be the same, if not slightly slower. Is anyone else noticing this? Thanks.
 

Read other answers
RELEVANCY SCORE 80.4

I can't apply Microsoft updates to address the Meltdown/Spectre vulnerabilities until there is an update to the BIOS software from Lenovo. I have reviewed the support page that lists models targeted for updates, and I don't see mine listed: https://support.lenovo.com/us/en/solutions/len-18282 This is my main personal laptop, which I use for a lot of important tasks. If I can't apply this critical security update then it's worthless to me. This is not a very old machine, I would expect there to be some acknowledgement of it on that support page, but as far as I can see only newer Yoga models are being targeted for firmware patches. Please advise whether Lenovo intends to address this issue on this model.

Read other answers
RELEVANCY SCORE 80.4

i'm told by various other forums and newsletters that along with the Microsoft update - installed yesterday - we also need a BIOS update (from manufacturers) with some kind of code from Intel, to fix the above flaws in our CPUs.
i searched the Toshiba downloads and updates page and the only BIOS updates are from 2012.
any news on Toshiba releasing a solution for this?

Read other answers
RELEVANCY SCORE 79.6

As I know, Intel already published microcode updates for all Haswell CPU's, including mobile. At least, ASUS support confirmed, that BIOS of all MB for Haswell will be updated. Updated microcodes for Linux are already available. What about BIOS update for the Yoga 2 Pro with i7-4500U? Thank you in advance.

Read other answers
RELEVANCY SCORE 79.6

We are attempting to automate the BIOS upgrades to address CVE-2017-5715. This has been no problem thus far on our other Lenovo models that have released updates. However, with the X250 (both touch and non-touch) we receive the following error:   error 180 - bios part numbers do not match It actually does not matter what version of the BIOS we try to flash, lower or higher. The embedded controller will update through the automation but the BIOS will not. The weird thing is if you manually run WINUPTP64.exe it will update without issue. This is not a realistic solution with the number of devices we have. I will say that our X250s have an OEM only BIOS version installed which I suspect might be the issue?   1.19 1.19 (N10ET40W) 1.13 (N10HT14W) For factory use  

A:X250 And Spectre/Meltdown - Cannot Automate BIOS Update

I'll add that this BIOS version is on at least 435 of our X250s.

Read other 1 answers
RELEVANCY SCORE 79.6

HelloI would like to install the O2TJY45USA firmware update for my Ideacentre 510-15IKL. I am running Linux Mint on the desktop. I could find the Windows10 updater .EXE on the pcsupport.lenovo.com website  so far. Does anybody knows if there is a bootable .ISO that I could use without Windows. The updater .EXE provided in the download package is called wflash2.exe which indicates that it is designed for the use with Windows10 and not FreeDOS or alike. Many thanks for your help

Read other answers
RELEVANCY SCORE 79.6

Will I need to update my IdeaCentre 71-25ISH motherboard's BIOS for Spectre vulnerabilities? I read here in the Reading Privileged Memory (https://support.lenovo.com/us/en/solutions/len-18282) with a Side Channel that Variant 2: Branch target injection (CVE-2017-5715)? Requires processor microcode updates  Requires operating system updatesVulnerable to Spectre attackSo does "Requires processor microcode updates" = motherboard BIOS update?  I see a line of infomation of stating Product: IdeaCentre 700Status: AffectedMinimum Version Required to Fix: FWKT86A  Link to Update:  http://support.lenovo.com/downloads/DS104868 Last Updated: 1/7/2018 I am posting here today because Monday Jan. 8 '18 I was told by Lenovo Support over the phone "there should be no need to update the motherboard BIOS". 

Read other answers
RELEVANCY SCORE 78.8

Is there an estimate of when the BIOS update for the YOGA 910-131 KV 80VF notebooks, to address the Meltdown and Spectre security vulnerabilities, will be available?  Will a notification be pushed out to users with 910s, or do I need to keep checking for availability myself?  Thanks.

Read other answers
RELEVANCY SCORE 78

Hello together, does anyone know why the T430s Type 2356 is missing on the BIOS Update list at the following page?https://support.lenovo.com/de/de/solutions/len-18282 So far, only 2352, 2353, 2354 and 2355 are listed an scheduled for february. Will there be an update for the 2356? Thanks in advanceRegards

Read other answers
RELEVANCY SCORE 75.6

I know this isn't the newest model, but I just purchased it new (on offer) by mid 2015, so I just have it for a good 2 years! I don't see it on the list of affected models, while it CLEARLY IS affected. Will we see a BIOS update to target the Spectre vulnerability? I have always taken Lenovo for giving good support for their hardware. Surely I will have to consider a different brand, if I cannot count on security updates for hardware just a little over 2 years old. (I'm taking suggestions as to which manufacturer is giving better support). At least put all models affected on the list, and just admit that they will not receive an update. So at least we know what we can expect!

A:Yoga 2 13 20344 Spectre vulnerability BIOS update

Could you please publish URL with the list of the vulnerable notebooks? I can't find it. Thank you in advance.

Read other 1 answers
RELEVANCY SCORE 72.8

Hi there
Will the W2012 Server get the 8.1 type of update --anybody know. There seems to be a deafening silence on W2012 server which IMO is strange as it is STREETS ahead of the really horrible W2008 server.

W2012 server has options though already to avoid the whole metro stuff but it would be nice to add some of the proposed customisation features to it.

I'm also not hearing anything about whether W8 ENTERPRISE will also be upgraded -- IMO this is MORE important even than the HOME versions if Ms wants businesses to adopt W8. Boot to the standard desktop is really a MUST for businesses - by also pinning standard programs to the quick launch task bar and / or the desktop a lot of problems of User training can be avoided.

Cheers
jimbo

A:Windows 2012 server to get update or not - anybody

I am wondering this myself. Also, how will future support work for users who do not upgrade to 8.1? Nothing in 8.1 looks to have much of an effect on someone who uses a SMR and the desktop exclusively. Should I bother upgrading and risk having some type of issue with my work PC?
I recently rolled out a 6 PC trial with Windows 8 and Start8 (Start8 with GPO), and am really concerned 8.1 could break something with GPO or Start 8. Ugg, MS.

Read other 15 answers
RELEVANCY SCORE 72.4

Hello. I have followed the directions as mentionned here: https://download.lenovo.com/pccbbs/mobiles/gmuj26us.txt I started by trying to install it silently but it didn't work. Then I tried to install it manually and it worked correctly.I grabbed another T540P to try it silently again but the same issue is happening. Here is the content of the Winuptp.log:[2018/1/11 14:8:55]OS = Windows 10 64bitFlash module cannot be found. It obviously cannot see the flash EXE even though I made sure it was in the same folderfyi I am running %filepath%\WINUPTP64.EXE -s Any help would be appreciated.Thanks! 

Read other answers
RELEVANCY SCORE 72.4

I've already seen something similar to this on here so apologies if it's a duplicate... BUT this one seems a bit easier to understand than the one I saw last week...
 

Read other answers
RELEVANCY SCORE 72.4

where can i find the Windows 7 and 8.1 fixes for Meltdown and Spectre CPU flaws

Read other answers
RELEVANCY SCORE 72.4

Last update: 4th January 2018 @10.44pm GMT

CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Meltdown and Spectre) Windows antivirus patch compatibility

 

Read other answers
RELEVANCY SCORE 71.2

We have a server that was put in by a company that likely no longer exists, and may not have even been a legitimate company in the first place. (Server came with the OS installed, but we did not get any documentation on the authenticity of the Windows license, nor is there a sticker on the machine... seems fishy to me.)

The server runs Windows Server 2012.
It will not update, as it says that updates are disabled, and does not allow me to enable them, as they are 'controlled by the administrator'.

What's worse, is that any computers joined to the domain that this server controls, are also plagued by the inability to update.

There appears to be the following problems:
1) Phantom update server - The computers that are members of the domain try and update from some source elsewhere than the regular Windows Update servers from Microsoft.
2) The computers do not let me change update settings if they are joined to the domain. They say the setting is 'controlled by the administrator'.
3) The server will not get updates, as they are disabled, and does not let me enable them because they are 'controlled by the administrator.'

I am the administrator so that doesn't make sense.

I can't seem to figure out why this is the case, as I went into the group policy editor on the server and changed all the Windows Update settings I could find back to 'not configured'.

I restarted the server, and the workstations, and still, I cann... Read more

A:Windows Server 2012 Cannot Update: Controlled by Administrator?

Really nasty -- sorry to hear of your fate.

You might check out How to disable GPOs.
 

Read other 1 answers
RELEVANCY SCORE 69.2

Hi All,
A week ago we had tried to install ATA Gateway 1.8 on our server core Domain Controllers but it had failed. This bug was apparently fixed in 1.8 update 1 (listed
here)
However now when we install it on core the installer fails without erroring. I have looked into the ATA deployment log which has the following in it:
[6A6C:5944][2017-08-09T21:59:54]i000: 2017-08-09 20:59:54.1044 27244 5   Debug [\[]DeploymentModel[\]] [\[]DeploymentAction=Upgrade[\]]
[6A6C:5944][2017-08-09T21:59:54]i000: 2017-08-09 20:59:54.4013 27244 5   Error [\[]GatewayBootstrapperApplication[\]] Failed to create deployment manager [\[]exception=System.ArgumentNullException: Value cannot be null.
Parameter name: path1
   at System.IO.Path.Combine(String path1, String path2)
   at Microsoft.Tri.Gateway.Deployment.Bundle.UI.Application.GatewayUpgradeDeploymentConfiguration.GetMandatoryConfiguration(String installationPath)
   at Microsoft.Tri.Gateway.Deployment.Bundle.UI.Application.GatewayUpgradeDeploymentConfiguration..ctor(Engine engine, String installationPath)
   at Microsoft.Tri.Gateway.Deployment.Bundle.UI.Application.GatewayDeploymentModel.CreateDeploymentConfiguration(Engine engine)
   at Microsoft.Tri.Deployment.Bundle.UI.Application.DeploymentModel..ctor(BootstrapperApplication bootstrapperApplication, ProductComponent productComponent, String productFullShortName, String productFullLongName, String productFullLongDispl... Read more

Read other answers
RELEVANCY SCORE 67.6

Hi;
I am having the KMS Server with Server 2012 KMS Key,which is hosted on Windows server 2012 R2.

We need to update the KMS Server 2K12 Key to 2K16 KMS Key, Is there any way to Get the detail that the key will activate these OS Versions?

MBAM Report Feature Error Alert

Read other answers
RELEVANCY SCORE 66.4

Hi I don't see my laptop B50-80 on the list in: Lenovo Security Advisory: LEN-18282 (https://support.lenovo.com/se/pl/solutions/len-18282)Why? Does it means that there won't be a upgrade for this laptop?

Read other answers
RELEVANCY SCORE 65.6

Hi All

I'm sure you've all been following the news of Meltdown/Spectre.

I'm a (very satisfied) AppGuard user and was wondering if AppGuard can or does help with the issues we are facing with Meltdown/Spectre?

I know you need to install OS patches, firmware updates etc etc but in my case my PC is over 5yrs old and I highly doubt there will be any firmware/BIOS updates so can/will AppGuard help at all protect from these threats?
 

A:AppGuard + Spectre/Meltdown

As long as nothing with a code that tries to exploit meltdown/spectre runs on your system then you are protected. So if appguard or any anti exe, anti malware, antivius, srp, god himself stops the payload you are ptotected and if not you are not protected. Not going to go into details when it stops and when it doesn't because as a user you should already know that.
 

Read other 0 answers
RELEVANCY SCORE 65.6

Hello people- I just heard about the security flaw out there called Spectre or meltdown-- My problem is this-- I am working on an older computer running Windows VISTA- yes you heard right-- My computer has never given me ANY problems- and I stand by the old motto- if it aint broke dont fix it. My memory has 8 GB and it is an HP-Intel core 2 quad cpu 2.33 GHZ- service pack 2 windows vista home premium.
Because I am running Vista- I can no longer get chrome updates- and thus when I try to do the software patch for this new problem- That strict isolation site - is not there and thus I cannot enable it- do you really think this is a problem- or not?? Please advise
P.S. My passwords are extremely strong for all of my important sites-if that matters?
 

Read other answers
RELEVANCY SCORE 65.6

Hello everybody, there is an offical Lenovo Advisory for Meltdown & Spectre in Combination with Lenovo Products:https://support.lenovo.com/de/de/solutions/len-18282 But i can't find information about my Lenovo Y50-70. Does anybody has further information?Do we will see an upgrade for our devices? Thanks in advancedGreatings from GermanyDaniel K.

Read other answers
RELEVANCY SCORE 65.2

BIOS updates for Meltdown and Spectre - any info on when they will be ready/released?

Read other answers
RELEVANCY SCORE 65.2

Looking through the list of downloads for Spectre/Meltdown here: https://support.lenovo.com/us/en/product_security/len-17297I see nothing for the M715q. I assume it isn't safe from these issues is it? Will it be getting a fix anytime soon?

Read other answers
RELEVANCY SCORE 65.2

Hello. I am curious if the Flex 2 and 3 series are vulnerable to the Spectre/meltdown vulnerabilities. I came across a Lenovo article with all the models and did not see Flex 2 and 3. https://support.lenovo.com/us/en/solutions/len-18282

Read other answers
RELEVANCY SCORE 65.2

Hello everybody, there is an offical Lenovo Advisory for Meltdown & Spectre in Combination with Lenovo Products:https://support.lenovo.com/nl/en/solutions/len-18282 But i can't find information about my Lenovo G550. Does anybody has further information?Do we will see an upgrade for our devices?

Read other answers
RELEVANCY SCORE 64.4

hi friendsMy laptop is a z5070 modelThere is no update for the Meltdown Specter cavityMy Processor Series 4 is the exact name of the 4210uBut the bios has not yet been upgraded and also the processor is not .....Why Lenovo does not do anything!Did you forget this model?

Read other answers
RELEVANCY SCORE 64.4

Concerning CVE-2017-5753, CVE-2017-5715 (Specter), and CVE-2017-5754 (Meltdown), Microsoft have provided patches for Windows Server OS's as per the following link.
https://support.microsoft.com/en-us/help/4072698
Thanks Microsoft!
Unforutnately, what is not clear is - does this have to be installed and activated on the Hyper-V host AND all guests, or just the Hyper-V host or just the Hyper-V guests?
We are running 700+ VM's across approximately 30 Hyper-V 2012 R2 hosts.  If it's only necessary to update the hosts, that would be less work for us - and we can do it without downtime for the guests.

Read other answers
RELEVANCY SCORE 64.4

hi friendsMy laptop is a z5070 modelThere is no update for the Meltdown Specter cavityMy Processor Series 4 is the exact name of the 4210uBut the bios has not yet been upgraded and also the processor is not .....Why Lenovo does not do anything!Did you forget this model?

Read other answers
RELEVANCY SCORE 64.4

I have been going crazy as I am sure others have been trying to get my computer patched.  I ran Powershell commnds to see if I am ok.  I found out it is incomplete without a patch from Lenovo.  It would be a mistake to not issue a patch as this would seem to be a betrayal of trust for those of us who bought Lenovo products. Please issue. Here is an explanation. The image means that your system received patches for the Meltdown bug, but has received incomplete patches for the Spectre bug.This was to be expected, as Google said yesterday that Spectre is harder to exploit, but also harder to patch.What the red text means is that you need additional chipset firmware updates. Microsoft and Google say that OEMs will need to provide users with these additional firmware updates to complete the Windows OS-level Spectre patches. Depending on your computer's age, some OEM might not make these firmware updates available, meaning you'll be stuck with an incomplete Spectre patch.If your laptop/desktop/server vendor has provided extra chipset firmware updates, you can get them from their official sites, install them, and complete the patch. 

Read other answers
RELEVANCY SCORE 64.4

Will there be BIOS updates for the T410 to address the Meltdown and Spectre vulnerabilities?

A:T410 BIOS updates for Meltdown and Spectre

Good day and welcome to the community.Please watch this page: https://support.lenovo.com/us/en/solutions/len-18282 for developing information.
 
As this topic is being addressed in the Security forum: https://forums.lenovo.com/t5/Security-Malware/bd-p/Security_Malware please search and engage discussion there.
 
This thread is now locked to avoid duplication, which only splinters discussions.
Regards.

Read other 1 answers
RELEVANCY SCORE 64.4

Is there a patch available yet?Meltdown and SpectreBugs in modern computers leak passwords and sensitive data. Meltdown and Spectre exploit critical vulnerabilities in modern processors. These hardware bugs allow programs to steal data which is currently processed on the computer. While programs are typically not permitted to read data from other programs, a malicious program can exploit Meltdown and Spectre to get hold of secrets stored in the memory of other running programs. This might include your passwords stored in a password manager or browser, your personal photos, emails, instant messages and even business-critical documents.Meltdown and Spectre work on personal computers, mobile devices, and in the cloud. Depending on the cloud provider's infrastructure, it might be possible to steal data from other customers.

Read other answers
RELEVANCY SCORE 64.4

Hello! I have a 3 year old Alienware 14. Does Dell plan on issuing BIOS updates to mitigate vulnerability to Meltdown and Spectre?

Read other answers
RELEVANCY SCORE 64.4

Hello everyone, in 2013 I purchased the Lenovo Ideapad N581 and I am running the newest version of Windows 10 with an SSD. The speed is incredible and I want to keep this laptop for as long as possible.  But with the recent meltdown and spectre debacle, I don't know if I am safe. I heard that I have to update the Bios, but there is no support for Win10. What do I have to do to protect myself? Do I have to buya new laptop? Is an update of windows really enough?

Read other answers