| Package | intel-microcode |
|---|---|
| Version | 3.20180703.2~bpo8+1~deb7u1 |
| Related CVEs | CVE-2017-5715 CVE-2018-3639 CVE-2018-3640 |
This update is required to mitigate against the so called Spectre variant 2 (branch target injection) vulnerability which requires an update to the processors microcode, which is non-free.
For instance you can find more information about this topic at
For recent Intel processors, the update is included in the intel-microcode
package from version 3.20180703.2bpo8+1deb7u1. It is available via the
wheezy-lts-kernel repository. For other processors, it may be included in an
update to the system BIOS or UEFI firmware, or in a later update to the
amd64-microcode package.
For Debian 7 Wheezy, these problems have been fixed in version 3.20180703.2~bpo8+1~deb7u1.
We recommend that you upgrade your intel-microcode packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.