Intel Q3 2018 Speculative Execution Side Channel Update
Description: Security researchers have identified a speculative execution side-channel method called L1 Terminal Fault (L1TF). This method impacts select microprocessor products supporting Intel® Software Guard Extensions (Intel® SGX). Further investigation by Intel has identified two related applications of L1TF with the potential to impact additional microprocessors, operating systems, system management mode, and virtualization software. If used for malicious purposes, this class of vulnerability has the potential to improperly infer data values from multiple types of computing devices.
Impact: A remote attacker could exploit this vulnerability to take control of an affected system.
Mitigation: Updates are available. Please see the references or vendor advisory for more information.
- Report Incident▼