cancel
Showing results for 
Search instead for 
Did you mean: 

SPECTRE and MELTDOWN: Bug rocks Intel / ARM CPUs

segfaulted
Level 7
Kinda glad I bought AMD this round. For those who don't know there is a new bug affecting just about every SKU from Intel made in the last .. ohh.. _DECADE_ or so. It's actually worse then F00F or FDIV. Only mitigation appears to castrate the CPU upward of 30%! (depending on processes).

Can Asus confirm AMD and more importantly for me, this or any AMD motherboard are not affected? If so, will there be RMAs?

Fun fact, Intel's CEO dumped stock back in November before they started issuing gags on people from even talking about it.

*****ASUS advisory page(may get updated): https://www.asus.com/News/V5urzYAT6myCC1o2 ******
409,983 Views
701 REPLIES 701

restsugavan wrote:
Here is the answer buddy ! Greeting ROG Rampage VI EXTREME now safe from both vulnerable what we had concern.



GAVAN DYNAMIC for SA-00086/88 now. Thank you ASUS to understand us.


I'm not sure what you did differently than I did. I flashed the BIOS to 1102 and still am not safe. WHere did you get the MEI update? What were the steps that you did?

I'm obviously missing something here but have no idea what. 😞
Panteks Enthoo Elite / Asus x299 Rampage VI Extreme / Intel I9-7900X / Corsair Dominator RGB 3200MHz

MSI GTX 1080 TI / 2x Intel 900p / Samsung 970 Pro 512GB

Samsung 850 PRO 512GB / Western Digital Gold 8TB HD

Corsair AX 1200i / Corsair Platinum K95 / Asus Chakram

Acer XB321HK 4k, IPS, G-sync Monitor / Water Cooled / Asus G571JT Laptop

Brighttail wrote:
I'm not sure what you did differently than I did. I flashed the BIOS to 1102 and still am not safe. WHere did you get the MEI update? What were the steps that you did?

I'm obviously missing something here but have no idea what. 😞


You must manually update your ME Firmware to 11.11.50.1436. Then your system will safe from SA-00086 vulnerable at last.
*
W11 25H2 27764.1000 Core i9 7980XE 02007108 MCE ME 11.12.96.2535 R6E Modified BIOS 4001 SAMSUNG OG9 FW 1020.0 SSD 970 EVO PLUS 1 TB x 3 NVIDIA RTX 4090 GAME READY 566.36 64GB GSKILL DDR4 3200MHz JBL 9.1 Sound Bar DTS-X

restsugavan wrote:
You must manually update your ME Firmware to 11.11.50.1436. Then your system will safe from SA-00086 vulnerable at last.
*


I guess this is my issue but i do not know HOW to do this. I downloaded it.. there was a bin executive file .. i executed it .. a window popped up with no error but still vulnerable. I'm seriously lost how to complete this last step.

**EDIT** well I ran the SA-00086 check from Windows and it says I'm still vulnerable but i ran the SpectreMeltdown check and it says I'm safe. I'm curious now as to why the discrepancy? Why would the windows checker say I'm vulnerable. Is the first test to show if your system can be vulnerable but not if you are currently protected? Sorry for all the questions but quite literally Asus / Intel doesn't have a lot of black n white, step by step instructions on this thing. Is the first test just testing MEI which has to be patched separately and the second is the CPU?

7067870679
Panteks Enthoo Elite / Asus x299 Rampage VI Extreme / Intel I9-7900X / Corsair Dominator RGB 3200MHz

MSI GTX 1080 TI / 2x Intel 900p / Samsung 970 Pro 512GB

Samsung 850 PRO 512GB / Western Digital Gold 8TB HD

Corsair AX 1200i / Corsair Platinum K95 / Asus Chakram

Acer XB321HK 4k, IPS, G-sync Monitor / Water Cooled / Asus G571JT Laptop

Brighttail wrote:
I guess this is my issue but i do not know HOW to do this. I downloaded it.. there was a bin executive file .. i executed it .. a window popped up with no error but still vulnerable. I'm seriously lost how to complete this last step.

**EDIT** well I ran the SA-00086 check from Windows and it says I'm still vulnerable but i ran the SpectreMeltdown check and it says I'm safe. I'm curious now as to why the discrepancy? Why would the windows checker say I'm vulnerable. Is the first test to show if your system can be vulnerable but not if you are currently protected? Sorry for all the questions but quite literally Asus / Intel doesn't have a lot of black n white, step by step instructions on this thing. Is the first test just testing MEI which has to be patched separately and the second is the CPU?

7067870679


The ASUS original ME Firmware 11.10.0.1287 on your RVIE was affected SA-00086 vulnerables. So it was normally you got that.
After you have update new ME 11.11.50.1436 on your RVIE. Your system will safe from SA-00086.*

Like this*
*
W11 25H2 27764.1000 Core i9 7980XE 02007108 MCE ME 11.12.96.2535 R6E Modified BIOS 4001 SAMSUNG OG9 FW 1020.0 SSD 970 EVO PLUS 1 TB x 3 NVIDIA RTX 4090 GAME READY 566.36 64GB GSKILL DDR4 3200MHz JBL 9.1 Sound Bar DTS-X

restsugavan wrote:
You must manually update your ME Firmware to 11.11.50.1436. Then your system will safe from SA-00086 vulnerable at last.
*


How much performance did you lost after updating your BIOS with the new CPU microcode * ?

Regards

Updated my ROG STRIX X299-E GAMING BIOS and ME Firmware successfully this morning, using the Get-SpeculationControlSettings in PowerShell, I can see that my system is fully protected now.

Throughput on my Samsung 960 Pro was similar after the patch with only about 10% degradation in read throughput, write throughput was almost identical.

Thanks ASUS even if it is a week late.

Edit:

It seems ME firmware available through EZ Update is still vulnerable, I'm not going to try updating from other sources, so I guess I'll have to keep waiting on ASUS for the Intel ME firmware update.

ELIESEH wrote:
How much performance did you lost after updating your BIOS with the new CPU microcode * ?

Regards


During test all days. Look like Single Thread work load affected from microcode 0200003A moderate decline.

Here is Core i9 7980XE BIOS 1004 Microcode original 0200002B RAMPAGE VI EXTREME ME 11.10.0.1287


Here is Core i9 7980XE BIOS 1102 Microcode new 0200003A RAMPAGE VI EXTREME ME 11.11.50.1436


Please note on single thread performance marginal decrese on CPU-Z 1.82 Benchmark

Here is Core i9 7980XE BIOS 1102 Microcode original 0200003A RAMPAGE VI EXTREME ME 11.11.50.1436


Again please note on single thread performance falling from 197 to 179 , Multicore score minimum decrese on Cinebench R15

Here is Core i9 7980XE Here is Core i9 7980XE BIOS 1102 Microcode original 0200003A RAMPAGE VI EXTREME ME 11.11.50.1436


Cache and memory performance did not affected from new microcode 0200003A on AIDA64 5.95

other Aida 64 5.95 Benchmark Suite look like AES score better than 0200002B microcode It can beat Ryzen 7 1800X @3600 easily


other benchmark suite are on par with 0200002B microcode from BIOS 1004











Here is Core i9 7980XE Here is Core i9 7980XE BIOS 1102 Microcode original 0200003A RAMPAGE VI EXTREME ME 11.11.50.1436


Geekbench 4.2.0 follow the same as CPU-Z Benchmark and Cinebench R15 the single thread performance decrese from 5500+ to 4990+
However multicore did not affected.

Test @ F5 load optimized setting and set memory to XMP only.:o
W11 25H2 27764.1000 Core i9 7980XE 02007108 MCE ME 11.12.96.2535 R6E Modified BIOS 4001 SAMSUNG OG9 FW 1020.0 SSD 970 EVO PLUS 1 TB x 3 NVIDIA RTX 4090 GAME READY 566.36 64GB GSKILL DDR4 3200MHz JBL 9.1 Sound Bar DTS-X

restsugavan wrote:
During test all days. Look like Single Thread work load affected from microcode 0200003A moderate decline. *Thank u for your details.
Why why whyyy we need to loose performance, intel should takes responsibility, when we paid 1100$-2000$ on a cpu, we cannot accept this disaster 😡
my cpu cost me 1100$, if it cost me 300$ range, i will not be disappointed the same way as i am now*

ELIESEH wrote:
restsugavan wrote:
During test all days. Look like Single Thread work load affected from microcode 0200003A moderate decline. *Thank u for your details.
Why why whyyy we need to loose performance, intel should takes responsibility, when we paid 1100$-2000$ on a cpu, we cannot accept this disaster ��
my cpu cost me 1100$, if it cost me 300$ range, i will not be disappointed the same way as i am now*


It's a software fix to mitigate an issue in hardware. There is no way for it to be mitigated without a performance impact without replacing the CPU with a new chip that has had the flaws engineered out of it's design and even then a different design may impart a performance reduction.

The reality is that there is simply no way in hell Intel can replace hundreds of millions of CPU's that are likely in active service. This is unfortunately the best available solution other than moving to Itanium. -_^ Even ORacle Sparc 9 CPU's are affected by essentially the same issue.

Kosmosagamemnon wrote:
ELIESEH wrote:


It's a software fix to mitigate an issue in hardware. There is no way for it to be mitigated without a performance impact without replacing the CPU with a new chip that has had the flaws engineered out of it's design and even then a different design may impart a performance reduction.

The reality is that there is simply no way in hell Intel can replace hundreds of millions of CPU's that are likely in active service. This is unfortunately the best available solution other than moving to Itanium. -_^ Even ORacle Sparc 9 CPU's are affected by essentially the same issue.


What will happened if i don’t apply the new bios update?
How much is the probability for an attacker’s to choose me? 0.1%樂
I think it is a good deal to not update to the new bios and i will keep my cpu performance and stability.*