While this tutorial specifically refers to
linux-image-4.18.0.20-generic
, linux-image-4.18.0.20-lowlatency
and intel-microcode
, these steps can be applied to any package that causes issues. Warning: Disabling
linux-image-4.18.0.20-generic
and intel-microcode
will leave you exposed to certain CPU side-channel data attacks. You must assess the risk of such an attack on your system before deciding to apply these steps.Warning: This procedure will block all future updates to
intel-microcode
. If you use this method, it is your responsibility to be aware of future updates to intel-microcode
in case of, for example, a more high risk exploit being mitigated. To unblock a blocked update, use this command format:
Code: Select all
sudo apt-mark unhold package_name
intel-microcode
update are causing havoc on my system, so I've unwound them and blocked them from being installed n a future update. This is how you can achieve the same result.Part 1: Kernel 4.18.0.20 and intel-microcode are already installed
Boot into an earlier kernel, e.g. 4.18.0.18 then:
Code: Select all
sudo apt remove --purge linux*4.18.0-20*
sudo apt remove --purge intel-microcode
generic
with lowlatency
if you use the low-latency kernel:
Code: Select all
sudo rm -rf /lib/modules/4.18.0-20-generic
Part 2: Block kernel 4.18.0.20 and intel-microcode from being installed
Replace
generic
with lowlatency
if you use the low-latency kernel:
Code: Select all
sudo apt-mark hold intel-microcode
sudo apt-mark hold linux-image-4.18.0.20-generic