Windows 10: Windows Client Guidance against speculative execution vulnerabilities

For all the ASUS motherboard owners, Asus has released a list of the updated bios versions that will be released to fix this issue, in some cases, some of these bios updates have NOT been released yet. Link below.
ASUS Global

 

For the Maximus X Series boards, it was released(uploaded ) already on the 3rd of January, they were fast!

 

Yes Asus released all of their Intel 370's boards already. All the others have not been released as of yet.

 

This is what I get. ASUS M4N68-M V2 and AMD Phenom II, NVIDIA nForce 630a chip-set and AMD CPU. Old stuff, but its my main desktop PC. SA-00086 says This system is not vulnerable. Not so good results with the Power Shell commands though. There haven't been any BIOS updates for it in years. Already running the latest dated 2012/01/18. Will have to reboot to double check, pretty sure I'm running the latest though.

 

Looks like I wasn't running the latest BIOS, just flashed to the latest but it didn't change anything as far as I can tell, still recommends getting a newer BIOS. Not sure what to do now?

 

SA-00086 is for the Intel management Engine flaw from last autumn / fall and is nothing to do with the current Spectre Meltdown flaws which is what you are checking with the Powershell scripts. Two separate issues, AMD is not affected by the Intel management flaw so does not require that fix, only applicable for Intel systems.

The forthcoming hardware patches so far are for Intel processors only.
For AMD the only "fix" at this point is the one included in the latest Windows update. As far as I'm aware AMD are not releasing any hardware patches yet and possibly do not need to? jury appears to be out on that at present.

 

Take a look here, and click "show more": Facts about Side-Channel Analysis and Intel Products

 

Isn't software a part of the product?

 

Windows update say's I'm fully up to date. Yeah, I knew what SA 00086 was for, just posting info on my checks. Might have confused things mentioning it though, like you say not relevant for AMD systems. I still trying to sort this all out in my head, so far all I'm getting is a head ache. *Banghead

 

Not of CPU, only microcode and FW.

 

Ah OK, but what part specifically? That's all to do with Intel, My system is AMD CPU with NVidia chip-set. Thanks for the link, I will have a look see, nothings jumping out at me that makes any sense though?

 

I think that in the case of AMD based on what little they have said so far they are pretty much covered by the Microsoft patch, I also have an AMD Phenom II rig but with an AMD chipset not my main one though, last bios was years ago, actually I've never updated it, if it ain't broke.... I'm not going to worry about it.

 

Ok for me the power shell commands show

BTI Hardware Preset :False
BTI Windows Support Present :True
BTI Windows Support Enabled :False
BTI Disabled By No Hardware Support :True

Can I take that to mean I'm safe because its not used, no hardware present?

And same for KVA?

KVA Shadow Pci Enabled : false

At first glance I thought I was venerable, but taking a closer look I think I'm fine, assuming I interpreted what each true false line actually means?

 

That's as I'm reading it. Hopefully someone will come up with a better and easy to understand method of checking, well I can dream....

 

An Update on AMD Processor Security | AMD