Linux Patch Queued to Report Outdated Intel CPU Microcode as a Vulnerability
a year ago
- #Intel
- #Linux
- #Microcode
- A Linux kernel patch has been queued to report outdated Intel CPU microcode as a security vulnerability.
- The patch will warn users when outdated CPU microcode is detected, likely to be included in Linux 6.16.
- Outdated microcode will be reported via `/sys/devices/system/cpu/vulnerabilities/old_microcode`.
- The kernel will also be tainted with the `TAINT_CPU_OUT_OF_SPEC` flag if outdated microcode is detected.
- Intel engineers will need to maintain a static list of microcode versions for different CPU families/models/steppings.
- Recent months have seen multiple microcode updates addressing security vulnerabilities, highlighting the importance of this patch.