Basic search

K
hpHP Product Security Response TeamHP:C06330149
HistoryMay 14, 2019 - 12:00 a.m.

HPSBHF03618 rev. 8 - Intel Microarchitectural Data Sampling Security Updates

2019-05-1400:00:00
HP Product Security Response Team
support.hp.com
30

Potential Security Impact

Information Disclosure

Source : HP, HP Product Security Response Team (PSRT)

Reported By : Intel

VULNERABILITY SUMMARY

Potential security vulnerabilities in Intel CPUs may allow information
disclosure. Researchers have referred to these vulnerabilities as ZombieLoad,
RIDL, and Fallout. See table below for further details.

Vulnerability

|

Description

|

CVE

—|—|—

Fallout, RIDL

|

Microarchitectural Store Buffer Data Sampling (MSBDS)

|

CVE-2018-12126

RIDL

|

Microarchitectural Load Port Data Sampling (MLPDS)

|

CVE-2018-12127

ZombieLoad, RIDL

|

Microarchitectural Fill Buffer Data Sampling (MFBDS)

|

CVE-2018-12130

RIDL

|

Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

|

CVE-2019-11091

RESOLUTION

Both software updates and firmware updates are required. See the links below
for more information regarding software updates.

Hypervisors could also be affected. Check with your hypervisor vendor for
potential software patches.

HP has identified the affected platforms and target dates for Softpaqs for
firmware updates. See the affected platforms listed below.

Related for HP:C06330149