ELA-18-1 intel-microcode security update

Spectre v2 mitigation

Related CVEs CVE-2017-5715 CVE-2018-3639 CVE-2018-3640

This update is required to mitigate against the so called Spectre variant 2 (branch target injection) vulnerability which requires an update to the processors microcode, which is non-free.

For instance you can find more information about this topic at


For recent Intel processors, the update is included in the intel-microcode package from version 3.20180703.2~bpo8+1~deb7u1. It is available via the wheezy-lts-kernel repository. For other processors, it may be included in an update to the system BIOS or UEFI firmware, or in a later update to the amd64-microcode package.

For Debian 7 Wheezy, these problems have been fixed in version 3.20180703.2~bpo8+1~deb7u1.

We recommend that you upgrade your intel-microcode packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.