Comment 70 for bug 1759920


>> FWIW: I just ran that on my system with the *old* microcode, and it

Define *old* microcode

Microcode can also come from the latest BIOS if you had updated. So if you really wanted to be sure you have the original CPU microcode which should be vulnerable, you will need to:

1. remove the intel-microcode package
2. rebuild the initrd for the kernel you want to run because the microcode is passed to the kernel
3. Make sure you are on an older BIOS release that did not include Intel microcode updates.

The *older* Ubuntu intel-microcode from January, may contain the first Intel patches, so that is why you want to fully remove the package and rebuilt initrd so that you get the microcode directly from CPU or BIOS.