Microsoft is now making available a new firmware update for its Surface devices running the April 2018 Update, version 1803, and higher releases of Windows 10.
In this rollout, most Surface devices, including Surface Pro 4, Surface Book, Surface Book 2, Surface Laptop, and Surface Laptop 2 are getting the update, and even though, the improvements are similar for every device, depending on the Surface that you have, the version number will be different.
According to the Microsoft change logs (via Neowin) addresses a security vulnerability regarding Microarchitectural Data Sampling that could potentially allow attackers to “read privileged data across trust boundaries.”
These vulnerabilities are known as:
- CVE-2018-12126 – Microarchitectural Store Buffer Data Sampling (MSBDS)
- CVE-2018-12130 – Microarchitectural Fill Buffer Data Sampling (MFBDS)
- CVE-2018-12127 – Microarchitectural Load Port Data Sampling (MLPDS)
- CVE-2019-11091 – Microarchitectural Data Sampling Uncacheable Memory (MDSUM)
According to the software maker, these vulnerabilities not only affect Windows 10, but other OSes from different platforms. If you own another computing device, it’s recommended to check your vendors support website for support.
The update should download and install automatically, but if you have not received it on your Surface, then you can go to Settings > Update & Security > Windows Update and try to force the download manually.