microcode_ctl-2.1-22.5.el7

This update supersedes microcode provided by Asianux with the CVE-2017-5715
(“Spectre”) CPU branch injection vulnerability mitigation. (Historically, Asianux
has provided updated microcode, developed by our microprocessor partners, as
a customer convenience.) Further testing has uncovered problems with the
microcode provided along with the “Spectre” mitigation that could lead to system
instabilities. As a result, Asianux is providing an microcode update that
reverts to the last known good microcode version dated before 03 January 2018.
Asianux strongly recommends that customers contact their hardware provider for
the latest microcode updates.

IMPORTANT: Customers using Intel Skylake-, Broadwell-, and Haswell-based
platforms must obtain and install updated microcode from their hardware vendor
immediately. The "Spectre" mitigation requires both an updated kernel from Red
Hat and updated microcode from your hardware vendor.

CVE-2017-5715
Systems with microprocessors utilizing speculative execution and
indirect branch prediction may allow unauthorized disclosure of
information to an attacker with local user access via a side-channel
analysis.