3125 matches found
CVE-2017-5715
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis...
UBUNTU-CVE-2017-5753
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis...
UBUNTU-CVE-2017-5715
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis...
Meltdown and Spectre CPU Flaws Affect Intel, ARM, AMD Processors
Unlike the initial reports suggested about Intel chips being vulnerable to some severe ‘memory leaking’ flaws, full technical details about the vulnerabilities have now been emerged, which revealed that almost every modern processor since 1995 is vulnerable to the issues. Disclosed today by Googl...
Description of the security update for SQL Server 2016 SP1 CU7: January 3, 2018
None None...
Description of the security update for SQL Server 2016 GDR: January 6, 2018
None None...
Description of the security update for SQL Server 2017 RTM CU3: January 3, 2018
None None...
Description of the security update for SQL Server 2012 SP4 GDR: January 12, 2018
None None...
Description of the security update for SQL Server 2016 SP1 GDR: January 3, 2018
None None...
Description of the security update for SQL Server 2014 SP2 CU10: January 16, 2018
None None...
Description of the security update for SQL Server 2008 SP4 GDR: January 6, 2018
None None...
Description of the security update for SQL Server 2008 R2 SP3 GDR: January 6, 2018
None None...
Description of the security update for SQL Server 2017 GDR: January 3, 2018
None None...
Description of the security update for SQL Server 2012 SP3 CU: January 16, 2018
None None...
Description of the security update for SQL Server 2012 SP3 GDR: January 16, 2018
None None...
Guidance to mitigate speculative execution side-channel vulnerabilities
NOTE This advisory was revised on July 10, 2018. Some content has been removed for simplicity and because it is no longer relevant. You can view the archived content for ADV180002 in the FAQ section following the Affected Products table. Executive Summary Microsoft is aware of a new publicly...
KLA11168 Multiple vulnerabilities in Microsoft SQL Server
Multiple information disclosure vulnerabilities have been found in Microsoft SQL Server. Malicious user can exploit these vulnerabilities to obtain sensitive information. These vulnerabilities can be exploited remotelly via speculative execution side-channel attack to obtain sensetive information...
VMware ESXi, Workstation and Fusion updates address side-channel analysis due to speculative execution.
Bounds-Check bypass and Branch Target Injection issues CPU data cache timing can be abused to efficiently leak information out of mis-speculated CPU execution, leading to at worst arbitrary virtual memory read vulnerabilities across local security boundaries in various contexts. Speculative...
Critical: kernel
Issue Overview: An updated kernel release for Amazon Linux has been made available which prevents speculative execution of indirect branches within the kernel. This release incorporates latest stable open source Linux security improvements to address CVE-2017-5715 within the kernel and builds upo...
Security Notice: CPU Speculative Side Channel Vulnerabilities
NVIDIA's response to CPU speculative side channel vulnerabilities CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 January 3, 2018 This notice is in response to Google Project Zero's publication of novel information disclosure attacks that combine CPU speculative execution with known side channels...