Microsoft is now making available a new firmware update for its Surface devices running the April 2018 Update, version 1803, and higher releases of Windows 10.
In this rollout, most Surface devices, including Surface Pro 4, Surface Book, Surface Book 2, Surface Laptop, and Surface Laptop 2 are getting the update, and even though, the improvements are similar for every device, depending on the Surface that you have, the version number will be different.
According to the Microsoft change logs (via Neowin) addresses a security vulnerability regarding Microarchitectural Data Sampling that could potentially allow attackers to “read privileged data across trust boundaries.”
These vulnerabilities are known as:
- CVE-2018-12126 – Microarchitectural Store Buffer Data Sampling (MSBDS)
- CVE-2018-12130 – Microarchitectural Fill Buffer Data Sampling (MFBDS)
- CVE-2018-12127 – Microarchitectural Load Port Data Sampling (MLPDS)
- CVE-2019-11091 – Microarchitectural Data Sampling Uncacheable Memory (MDSUM)
According to the software maker, these vulnerabilities not only affect Windows 10, but other OSes from different platforms. If you own another computing device, it’s recommended to check your vendors support website for support.
The update should download and install automatically, but if you have not received it on your Surface, then you can go to Settings > Update & Security > Windows Update and try to force the download manually.
Mauro Huculak is a Windows expert and the Editor-in-Chief who started Pureinfotech in 2010 as an independent online publication. He is also been a Windows Central contributor for nearly a decade. Mauro has over 12 years of experience writing comprehensive guides and creating professional videos about Windows, software, and related technologies, including Android and Linux. Before becoming a technology writer, he was an IT administrator for seven years. In total, Mauro has over 20 years of combined experience in technology. Throughout his career, he achieved different professional certifications from Microsoft (MSCA), Cisco (CCNP), VMware (VCP), and CompTIA (A+ and Network+), and he has been recognized as a Microsoft MVP for many years. You can follow him on X (Twitter), YouTube, LinkedIn and About.me.