On Sun, Jan 21, 2018 at 07:47:35AM -0200, Henrique de Moraes Holschuh wrote: > severity 887856 grave > block 887856 by 886998 > thanks > > On Sat, 20 Jan 2018, Julien Aubin wrote: > > As of now intel-microcode of stretch is still set to 20170707 (20171117 > > through > > bpo) which lets users vulnerable to Spectre attack CVE-2017-5715. Could you > > please bring quickly the microcode update to stretch, at least on bpo ? > > Please refer to bug #886998 > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886998 > > We will wait for a new, official Intel microcode release before we > consider updating the intel-microcode package in stable and backports.
https://downloadcenter.intel.com/download/27591/Linux-Processor-Microcode-Data-File These should be good now? Let's keep this cooking in unstable for a while before considering an upgrade in stable, though. Cheers, Moritz
