Security News > 2018 > January > Intel testing new Spectre fixes, tells everyone to hold off on deploying current firmware updates

Intel testing new Spectre fixes, tells everyone to hold off on deploying current firmware updates
2018-01-23 16:17

Shortly after Red Hat stopped providing microcode to address variant 2 (branch target injection) of the Spectre attack, Intel has advised OEMs, cloud service providers, system manufacturers, software vendors and end users stop deployment of current firmware updates that fix the same vulnerability (CVE-2017-5715). Red Hat’s decision “Red Hat is no longer providing microcode to address Spectre, variant 2, due to instabilities introduced that are causing customer systems to not boot. The latest microcode_ctl and … More →


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/H0Z60zFuXvo/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2018-01-04 CVE-2017-5715 Information Exposure Through Discrepancy vulnerability in multiple products
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
5.6

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Intel 6314 31 755 708 45 1539