Red Hat Patches Does Not Contain Latest Microcode Update
Has anyone tried patching their RHEL 7 system with the latest updates? It includes the patch for these but sadly it doesn't fix variant 2 of Spectre. Verified this on a fresh RHEL 7 install and updated to the latest patches via Red Hat Subscription Manager yet running their detection script still tells you its vulnerable.
On a more technical note, the culprit seems to be that the microcode update does not yet contain the latest one for the processor we are using, as the microcode version is still 0x700000d, dated 2016-10-12. The microcode for this processor though is already available from Intel, as we have manually applied it already on other systems.
Reported this to RH and hope they release updated patches soon.
Biting the hand that feeds IT
