16 March 2018

Home » » Microsoft Compatibility Reporting Tool Spectre and Meltdown Patch

Microsoft Compatibility Reporting Tool Spectre and Meltdown Patch

  Friday, March 16, 2018    2 comments
Ever since the Spectre and Meltdown issues arose, we have been waiting on patching, at least reliable patching. Microsoft has taken it on itself to patch systems for the vulnerability. ExtremeTech wrote an excellent article on Microsoft's solution which gave me the thought to write a script for telling which systems are compatible. To determine the minimum family and model compatible with the patch, I used the data from this Intel page that associates family and model to the microarchitecture code name. I converted the family and model from hexadecimal to decimal. That is how I came up with the bare minimum being Family 6 Model 42.

NOTE: The ExtremeTech article includes the Haswell processor as also being compatible. We do not have any Haswell processors in my environment, so I am not able to know what the minimum family and model are for Haswell. If you do have Haswell processors in your environment, I would appreciate you running the following PowerShell cmdlet and reply here with the output so that I can include it in the script. Thanks.

(Get-WmiObject win32_processor).Caption

The script can be executed using the new Scripts tool in SCCM, which is how this was done in my environment.

You can find the script from my GitHub site.

Here is what the output looks like:



Related Posts:

  • Bitlocker Access is Denied We recently started getting access is denied when trying to enable bitlocker on our Dell Latitude E7440 models. At first we thought it was a problem with the laptop itself upon the first occurrence of it. We were able to i… Read More
  • Laptop Mandatory Reboot Management Managing laptops in certain environments can be daunting. Reboots are a must every now and then, especially for monthly windows updates. With the sleep and hibernate features being enabled, the chances of a user rebootin… Read More
  • MDT Build Reporting Tool I have been wishing for a reporting system to which MDT would automatically email IT staff when a build is finished. I began investigating how to access MDT using PowerShell and found this great resource. I used their infor… Read More
  • Update Drivers and BIOS via PowerShell and Dell Command Update NOTE: I used Sapien's PowerShell Studio to write this script that significantly simplified the process! During the build process, I execute the Dell Command Update to make sure the latest drivers and BIOS version… Read More
  • Import Active Directory Module into Windows PE One thing I have been wanting to have is access to active directory in a WinPE environment. The main reason I want it is to be able to delete systems from active directory during a build. When I first started researching, I… Read More

2 comments:

  1. AnonymousMarch 20, 2018 at 5:14 AM

    Hello! I have a HP 820 G1 with Intel CPU i5_4300U. This is a Haswell CPU. The output from (get-wmiobject win32_processor).caption is: Intel64 Family 6 Model 69 Stepping 1.

    Hope this helps.

    Bye

    ReplyDelete