Windows 10: Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...

Aradhyaswamy K M · Mar 12, 2024

Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel vulnerabilitiesMicrosoft CVE-2017-5753: Guidance to mitigate speculative execution side-channel vulnerabilitiesMicrosoft CVE-2017-5754: Guidance to mitigate speculative execution side-channel vulnerabilitiesMicrosoft CVE-2018-3693: Guidance to mitigate speculative execution side-channel vulnerabilities

:)

Brink · Mar 12, 2024

Surface Guidance for speculative execution side-channel vulnerability

Surface Guidance to protect against speculative execution side-channel vulnerabilities

Applies to: Surface Pro 4, Surface Book, Surface Studio, Surface Pro (latest), Surface Laptop, Surface Pro with LTE Advanced, Surface Book 2 - 13 inch, Surface Book 2 - 15 inch

Introduction

Since January 2018, the Surface team has been publishing firmware updates for a new class of hardware vulnerabilities that involve speculative execution side channels. The Surface team has not received any information to indicate that these vulnerabilities have been used to attack customers currently, and the team continues to work closely with the Windows team and industry partners to protect customers. To get all available protection, both firmware and Windows system updates are required.

Summary

Vulnerabilities Announced in May 2018
The Surface team has become aware of new speculative execution side-channel attack variants that also affect Surface products. Mitigation of those vulnerabilities requires UEFI updates that use new microcode. For more information about the vulnerabilities and mitigations, see the following security advisories:

Microsoft Security Advisory ADV180012

Microsoft Security Advisory ADV180013

We are working with our partners to provide updates to the following Surface products as soon as we can make sure that the updates meet our quality requirements:

Surface Book 2

Surface Book

Surface Laptop

Surface Studio

Surface Pro 4

Surface Pro 3

Surface Pro Model 1796 and Surface Pro with Advanced LTE Model 1807

References

CVE-2018-3640

CVE-2018-3639

Vulnerabilities Announced in January 2018
The Surface team is aware of the publicly disclosed class of vulnerabilities that involve speculative execution side channels (known as Spectre and Meltdown) that affect many modern processors and operating systems, including Intel, AMD, and ARM. For more information about the vulnerabilities and mitigations, see the following security advisory:

Microsoft Security Advisory ADV180002

For more information about Windows software updates, see the following Knowledge Base articles:

4073757 Protect your Windows devices against Spectre and Meltdown vulnerabilities

4073119 Windows Client Guidance for IT Pros to protect against speculative execution side-channel vulnerabilities

In addition to installing the January 3 Windows Operating System Security Updates, Surface has released UEFI updates through Windows Update and the Download Center for the following devices:

Surface Book 2 - (Update history)

Surface Book - (Update history)

Surface Laptop - (Update history)

Surface Studio - (Update history)

Surface Pro 4 - (Update history)

Surface Pro 3 - (Update History)

Surface Pro Model 1796 and Surface Pro with Advanced LTE Model 1807- (Update History)

These updates are available for devices that are running Windows 10 Creators Update (build 15063) and later versions.

References

CVE-2017-5753

CVE-2017-5715

CVE-2017-5754

More Information

Note Surface hub has implemented defense-in-depth strategies. For more information, go to the following topic on the Microsoft website:

Differences between Surface Hub and Windows 10 Enterprise

Because of this, we believe that exploits that use these vulnerabilities are significantly reduced on Surface Hub.

The Surface team is focused on making sure that our users have a secure and reliable experience. We will continue to monitor and update devices as required to address these vulnerabilities and keep the device reliable and secure.
Click to expand...

Source: https://support.microsoft.com/en-us/...n-side-channel

See also: Surface devices and the new speculative execution side-channel vulnerabilities (May 2018) Surface

Brink · Mar 12, 2024

Surface Guidance for speculative execution side-channel vulnerability Surface

Surface Guidance to protect against speculative execution side-channel vulnerabilities

Applies to: Surface Pro 4, Surface Book, Surface Studio, Surface Pro (latest), Surface Laptop, Surface Pro with LTE Advanced, Surface Book 2 - 13 inch, Surface Book 2 - 15 inch

Introduction

Since January 2018, the Surface team has been publishing firmware updates for a new class of hardware vulnerabilities that involve speculative execution side channels. The Surface team has not received any information to indicate that these vulnerabilities have been used to attack customers currently, and the team continues to work closely with the Windows team and industry partners to protect customers. To get all available protection, both firmware and Windows system updates are required.

Summary

Vulnerabilities Announced in May 2018
The Surface team has become aware of new speculative execution side-channel attack variants that also affect Surface products. Mitigation of those vulnerabilities requires UEFI updates that use new microcode. For more information about the vulnerabilities and mitigations, see the following security advisories:

Microsoft Security Advisory ADV180012

Microsoft Security Advisory ADV180013

We are working with our partners to provide updates to the following Surface products as soon as we can make sure that the updates meet our quality requirements:

Surface Book 2

Surface Book

Surface Laptop

Surface Studio

Surface Pro 4

Surface Pro 3

Surface Pro Model 1796 and Surface Pro with Advanced LTE Model 1807

References

CVE-2018-3640

CVE-2018-3639

Vulnerabilities Announced in January 2018
The Surface team is aware of the publicly disclosed class of vulnerabilities that involve speculative execution side channels (known as Spectre and Meltdown) that affect many modern processors and operating systems, including Intel, AMD, and ARM. For more information about the vulnerabilities and mitigations, see the following security advisory:

Microsoft Security Advisory ADV180002

For more information about Windows software updates, see the following Knowledge Base articles:

4073757 Protect your Windows devices against Spectre and Meltdown vulnerabilities

4073119 Windows Client Guidance for IT Pros to protect against speculative execution side-channel vulnerabilities

In addition to installing the January 3 Windows Operating System Security Updates, Surface has released UEFI updates through Windows Update and the Download Center for the following devices:

Surface Book 2 - (Update history)

Surface Book - (Update history)

Surface Laptop - (Update history)

Surface Studio - (Update history)

Surface Pro 4 - (Update history)

Surface Pro 3 - (Update History)

Surface Pro Model 1796 and Surface Pro with Advanced LTE Model 1807- (Update History)

These updates are available for devices that are running Windows 10 Creators Update (build 15063) and later versions.

References

CVE-2017-5753

CVE-2017-5715

CVE-2017-5754

More Information

Note Surface hub has implemented defense-in-depth strategies. For more information, go to the following topic on the Microsoft website:

Differences between Surface Hub and Windows 10 Enterprise

Because of this, we believe that exploits that use these vulnerabilities are significantly reduced on Surface Hub.

The Surface team is focused on making sure that our users have a secure and reliable experience. We will continue to monitor and update devices as required to address these vulnerabilities and keep the device reliable and secure.
Click to expand...

Source: https://support.microsoft.com/en-us/...n-side-channel

See also: Surface devices and the new speculative execution side-channel vulnerabilities (May 2018) Surface

ddelo · Mar 12, 2024

Enable Retpoline to mitigate Spectre variant 2 (CVE-2017-5715)

So stupid question. I have applied 1809 updates and Retpoline is enabled, but I notice when I run Get-SpeculationControlSettings the SSBDWindowsSupportEnabledSystemWide: is False. The only way for me to get this to True, is to change the below registry entries, which were the original fix. So if I am reading this right, with Retpoline enabled, this SHOULD be false?

To enable mitigations for CVE-2018-3639 (Speculative Store Bypass), default mitigations for CVE-2017-5715 (Spectre Variant 2) and CVE-2017-5754 (Meltdown):

reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /v FeatureSettingsOverride /t REG_DWORD /d 8 /f

reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /v FeatureSettingsOverrideMask /t REG_DWORD /d 3 /f
Click to expand...

Hi and welcome to TenForums *Smile
First things first... stupid question is only the one that hasn't been asked....

Second, Microsoft Cumulative Update KB4494441 (OS Build 17763.503), enables “Retpoline” by default if Spectre Variant 2 (CVE-2017-5715) is enabled. In other words, Retpoline is enabled by default, in Clent SKUs with a Retpoline capable CPU, without the need to alter the Registry in any way!

So if you want SSBDWindowsSupportEnabledSystemWide to be True, yes you need to add the two registry entries with the values 8 and 3.
You can read about it here

In my system, I haven't added the two registry entries which results to SSBDWindowsSupportEnabledSystemWide not enabled (=False). That's my choice though and I cannot suggest to anyone that it's the correct one! *sarc

Windows 10: Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...

Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...

Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...

Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...

Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel... - Similar Threads - Microsoft CVE 2017

Enable Retpoline to mitigate Spectre variant 2 (CVE-2017-5715)

Q3 2018 Intel Speculative Execution Side Channel Update

Surface Guidance for speculative execution side-channel vulnerability

New Speculative Execution Side-Channel Vunerability (Variant 4)

Mitigating speculative execution side-channel attacks in Edge and IE11

SQL Server Guidance against speculative execution vulnerabilities

Mitigating speculative execution side channel hardware vulnerabilities

Windows Server Guidance against speculative execution vulnerabilities

Windows Client Guidance against speculative execution vulnerabilities