Windows 10: Mitigating speculative execution side channel hardware vulnerabilities

Discus and support Mitigating speculative execution side channel hardware vulnerabilities in Windows 10 News to solve the problem; On January 3rd, 2018, Microsoft released an advisory and security updates related to a newly discovered class of hardware vulnerabilities involving... Discussion in 'Windows 10 News' started by Brink, Mar 14, 2018.

  1. Brink
    Brink New Member

    Mitigating speculative execution side channel hardware vulnerabilities


    Source: Mitigating speculative execution side channel hardware vulnerabilities Defense

    See also: Microsoft Announcing Speculative Execution Bounty Program Launch - Windows 10 Forums
     
    Brink, Mar 14, 2018
    #1
  2. Cliff S New Member

    Ok...
    I just read it all,
    and my head went

    Mitigating speculative execution side channel hardware vulnerabilities [​IMG]


    That was alot to digest.*Smile

    :)
     
    Cliff S, Mar 14, 2018
    #2
  3. Rey Cam Win User
    Windows 10 stutters / lag when opening UWP apps

    Below is the official Microsoft statement on this issue.

    “We’re aware of this industry-wide issue and have been working closely with chip manufacturers to develop and test mitigations to protect our customers. We are in the process of deploying
    mitigations to cloud services and are releasing security updates todayto protect Windows
    customers against vulnerabilities affecting supported hardware chips from Intel, ARM, and AMD. We have not received any information to indicate that these vulnerabilities had been used to attack our customers.”

    Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as "speculative execution side-channel attacks" that affects many modern processors and operating systems including Intel, AMD,
    and ARM.

    To address these issues, Microsoft has worked in partnership with the hardware industry to develop mitigations and guidance.

    Your understanding is highly appreciated.
     
    Rey Cam, Mar 14, 2018
    #3
  4. Mitigating speculative execution side channel hardware vulnerabilities

    Windows 10 we cannot connect to the update service

    PLEASE READ :

    Microsoft Security Advisory:
    MSRC ADV180002


    Intel:
    Security Advisory


    ARM:
    Security Advisory


    AMD:
    Security Advisory


    NVIDIA:
    Security Advisory


    Microsoft Secure blog:
    Understanding the Performance Impact of Spectre and Meltdown Mitigations on Windows Systems


    Windows for Business blog:
    Windows Analytics now helps assess Meltdown and Spectre protections


    Consumer Guidance:
    Protecting your device against chip-related security vulnerabilities


    Antivirus Guidance:
    Windows security updates released January 3, 2018, and antivirus software


    Guidance for AMD Windows OS security update block:
    KB4073707: Windows operating system security update block for some AMD based devices


    Update to Disable Mitigation against Spectre, Variant 2:
    KB4078130: Intel has identified reboot issues with microcode on some older processors


    Surface Guidance:
    Surface Guidance to protect against speculative execution side-channel vulnerabilities


    IT Pro Guidance:
    Windows Client Guidance for IT Pros to protect against speculative execution side-channel vulnerabilities


    Edge Developer Blog:
    Mitigating speculative execution side-channel attacks in Microsoft Edge and Internet Explorer


    Server Guidance:
    Windows Server guidance to protect against speculative execution side-channel vulnerabilities


    Server Hyper-V Guidance

    Azure Blog:
    Securing Azure customers from CPU vulnerability


    Azure KB:
    KB4073235: Microsoft Cloud Protections Against Speculative Execution Side-Channel Vulnerabilities


    Azure Stack guidance:
    KB4073418: Azure stack guidance to protect against the speculative execution side-channel vulnerabilities


    SQL Server guidance:
    KB4073225: SQL Server Guidance to protect against speculative execution side-channel vulnerabilities


    SCCM guidance:
    Additional guidance to mitigate speculative execution side-channel vulnerabilities
     
    Darlene Hamilton, Mar 14, 2018
    #4
Thema:

Mitigating speculative execution side channel hardware vulnerabilities

Loading...
  1. Mitigating speculative execution side channel hardware vulnerabilities - Similar Threads - Mitigating speculative execution

  2. Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...

    in AntiVirus, Firewalls and System Security
    Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel...: Microsoft CVE-2017-5715: Guidance to mitigate speculative execution side-channel vulnerabilitiesMicrosoft CVE-2017-5753: Guidance to mitigate speculative execution side-channel vulnerabilitiesMicrosoft CVE-2017-5754: Guidance to mitigate speculative execution side-channel...
  3. Windows Sandbox and Intel CPU Speculative side channel vulnerabilities

    in AntiVirus, Firewalls and System Security
    Windows Sandbox and Intel CPU Speculative side channel vulnerabilities: Hi. I've yet to try Windows 10 version 1903 (waiting for the final version to roll out). However I'm aware of the new Windows Sandbox feature and I'm excited about it. I do have a question though. In the light of the recent side channel speculative execution...
  4. Q3 2018 Intel Speculative Execution Side Channel Update

    in Windows 10 News
    Q3 2018 Intel Speculative Execution Side Channel Update: Intel ID: INTEL-SA-00161 Product family: Multiple Impact of vulnerability: Information Disclosure Severity rating: See Security Advisory text Original release: 08/14/2018 Last revised: 08/14/2018 Summary: Security researchers have identified a speculative execution...
  5. Surface Guidance for speculative execution side-channel vulnerability

    in Windows 10 News
    Surface Guidance for speculative execution side-channel vulnerability: Surface Guidance to protect against speculative execution side-channel vulnerabilities Applies to: Surface Pro 4, Surface Book, Surface Studio, Surface Pro (latest), Surface Laptop, Surface Pro with LTE Advanced, Surface Book 2 - 13 inch, Surface Book 2 - 15 inch...
  6. New Speculative Execution Side-Channel Vunerability (Variant 4)

    in Windows 10 News
    New Speculative Execution Side-Channel Vunerability (Variant 4): Addressing New Research for Side-Channel Analysis Details and Mitigation Information for Variant 4 By Leslie Culbertson Following Google Project Zero’s (GPZ)* disclosure of speculative execution-based side-channel analysis methods in January, Intel has continued working...
  7. Mitigating speculative execution side-channel attacks in Edge and IE11

    in Windows 10 News
    Mitigating speculative execution side-channel attacks in Edge and IE11: Today, Google Project Zero published details of a class of vulnerabilities which can be exploited by speculative execution side-channel attacks. These techniques can be used via JavaScript code running in the browser, which may allow attackers to gain access to memory in the...
  8. SQL Server Guidance against speculative execution vulnerabilities

    in Windows 10 News
    SQL Server Guidance against speculative execution vulnerabilities: SQL Server Guidance to protect against speculative execution side-channel vulnerabilities Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and...
  9. Windows Server Guidance against speculative execution vulnerabilities

    in Windows 10 News
    Windows Server Guidance against speculative execution vulnerabilities: Windows Server guidance to protect against speculative execution side-channel vulnerabilities Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities that are referred to as “speculative execution side-channel attacks” that affect many modern...
  10. Windows Client Guidance against speculative execution vulnerabilities

    in Windows 10 News
    Windows Client Guidance against speculative execution vulnerabilities: Windows Client Guidance for IT Pros to protect against speculative execution side-channel vulnerabilities Summary Microsoft is aware of a new publicly disclosed class of vulnerabilities that are called “speculative execution side-channel attacks” that affect many...

Users found this page by searching for:

  1. KVA shadow mitigation