Spectre

Intel Spectre and Meltdown vulnerability guidance

Intel released new details of availability for microcode updates that address the Meltdown and Spectre design flaws in Intel processors. According to the company, Intel has stopped working on microcode updates for certain Intel processors as noted in the release.

Intel Spectre and Meltdown vulnerability guidance Read More »

Intel issues new Spectre/Meltdown patch guidance

Intel said the root cause of the reboot issues have been identified. To that end, the company said customers and partners should not install its current versions of Spectre/Meltdown patches rolled out earlier this month as they “may introduce higher than expected reboots and other unpredictable system behavior.”

Intel issues new Spectre/Meltdown patch guidance Read More »

Intel issues updated security guidance on Spectre/Meltdown

Intel made an update yesterday to previously issued security advisory on the Spectre/Meltdown ‘speculation execution’ vulnerabilities that could cause information disclosure on systems running Intel processors.

Intel issues updated security guidance on Spectre/Meltdown Read More »

Oracle Critical Patch Update Advisory for January 2018

Oracle has released its Critical Patch Update Advisory for January 2018. The update includes 237 new security fixes for multiple Oracle products to include Spectre (CVE-2017-5753, CVE-2017-5715) and Meltdown (CVE-2017-5754) Intel processor vulnerabilities.

Oracle Critical Patch Update Advisory for January 2018 Read More »

Apple releases new security updates to address Spectre

Apple released macOS High Sierra 10.13.2 Supplemental Update that includes security improvements to Safari and WebKit to mitigate the effects of Spectre vulnerability (CVE-2017-5753 and CVE-2017-5715).  Apple also provided a security update for Safari 11.0.2 for OS X El Capitan 10.11.6 and macOS Sierra 10.12.6, with fixes for the same Spectre vulnerabilities. The MacOS High Sierra update will already upgrade Safari to version 11.0.2 (13604.4.7.1.6) or version 11.0.2

Apple releases new security updates to address Spectre Read More »

Meltdown and Spectre vulnerabilities

US-CERT issued a security update regarding the latest Intel processor design flaws. According to the vulnerability note, the CPU hardware implementations are vulnerable to side-channel attacks. The two vulnerabilities are referred to as Meltdown and Spectre. An excerpt from the advisory:  “CPU hardware implementations are vulnerable to side-channel attacks referred to as Meltdown and Spectre. These attacks are described in detail by Google Project

Meltdown and Spectre vulnerabilities Read More »