search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CPU hardware utilizing speculative execution may be vulnerable to cache side-channel attacks

Vulnerability Note VU#180049

Original Release Date: 2018-05-21 | Last Revised: 2018-06-19

Overview

CPU hardware utilizing speculative execution may be vulnerable to cache timing side-channel analysis. Two vulnerabilities are identified, known as "Variant 3a" and "Variant 4".

Description

Speculative execution is a technique used by many modern processors to improve performance by predicting which instructions may be executed based on past execution history. An attacker with local user access may be able to utilize sequences of speculative execution to perform a cache timing side-channel analysis.

CWE-208: Information Exposure Through Timing Discrepancy

CVE-2018-3639 – Speculative Store Bypass (SSB) – also known as "Variant 4"

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may read an earlier value of the data. Subsequent speculative memory accesses cause allocations into the cache, which may allow a sequence of speculative loads to be used to perform timing side-channel attacks. In particular, if an attacker has control of a previously cached value, or the first store and load instructions are accesses onto the stack, an attacker may be able to control future speculative execution and access arbitrary privileged data by using less privileged code with timing side-channel analysis.

CVE-2018-3640 – Rogue System Register Read (RSRE) – also known as "Variant 3a"

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may return a speculative register value that is then used in subsequent speculative load instructions. These subsequence speculative loads cause allocations into the cache that may allow a sequence of speculative loads to be used to perform timing side-channel attacks. An attacker with local user access may be able to use timing side-channel analysis to determine the values stored in system registers.

For more information and technical details, please see the original Project Zero bug report, Intel's security advisory INTEL-SA-00115, AMD's whitepaper, and ARM's whitepaper.

These vulnerabilities have been noted in the media for their similarity to previously-disclosed vulnerabilities: CVE-2017-5753 (Variant 1, "Spectre"), CVE-2017-5715 (Variant 2, "Spectre"), CVE-2017-5754 (Variant 3, "Meltdown"). See VU#584653 for further information.

Impact

An attacker with local user access may be able to read arbitrary privileged data or system register values by utilizing cache timing side-channel analysis.

Solution

Update system software

Affected users should check with OEM and system software vendors and apply any available updates as soon as possible. Microcode updates and other system updates are expected to be available within the coming weeks. The Vendor Status links below provide further information.

Update your browser

Affected users should update to the latest version of any web browser in use. Most leading browser providers have recently deployed mitigations in their Managed Runtimes – mitigations that substantially increase the difficulty of exploiting side channels in a modern web browser. These techniques would likewise increase the difficulty of exploiting a side channel in a browser based on SSB.

Vendor Information

180049
 
Affected   Unknown   Unaffected

AMD

Notified:  May 04, 2018 Updated:  May 23, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

AMD has released a whitepaper with further details.

Vendor References

Addendum

AMD was reported by researchers as having been affected: https://bugs.chromium.org/p/project-zero/issues/detail?id=1528.

If you have feedback, comments, or additional information about this vulnerability, please send us email.

ARM Limited

Updated:  June 14, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

Apple

Notified:  May 04, 2018 Updated:  June 05, 2018

Statement Date:   June 01, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Apple's statement for more information.

Vendor References

Cisco

Notified:  May 21, 2018 Updated:  May 22, 2018

Statement Date:   May 22, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please find more information at Cisco Security Advisory 20180521.

Vendor References

Dell

Notified:  May 21, 2018 Updated:  May 21, 2018

Statement Date:   May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Dell EMC's statement.

Vendor References

Dell EMC

Notified:  May 21, 2018 Updated:  May 21, 2018

Statement Date:   May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Dell EMC's statement.

Vendor References

Fortinet, Inc.

Notified:  May 21, 2018 Updated:  May 24, 2018

Statement Date:   May 23, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Fortinet's advisory FG-IR-18-002 for more information.

Vendor References

HP Inc.

Notified:  May 21, 2018 Updated:  May 24, 2018

Statement Date:   May 24, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

HP has released an advisory with further details.

Vendor References

Hitachi

Notified:  May 21, 2018 Updated:  June 05, 2018

Statement Date:   June 02, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see more information at HIRT-PUB18001.

Vendor References

IBM, INC.

Notified:  May 21, 2018 Updated:  May 21, 2018

Statement Date:   May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see IBM's statement for more details.

Vendor References

Intel

Notified:  May 04, 2018 Updated:  May 21, 2018

Statement Date:   May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

See Intel security advisory SA-00115 for more details.

Vendor References

Microsoft

Notified:  May 04, 2018 Updated:  May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Microsoft security advisories ADV180012 and ADV180013 for more details. Developers may also consult guidance.

Vendor References

QUALCOMM Incorporated

Notified:  May 21, 2018 Updated:  May 21, 2018

Statement Date:   May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Red Hat, Inc.

Notified:  May 04, 2018 Updated:  May 22, 2018

Statement Date:   May 22, 2018

Status

  Affected

Vendor Statement

Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/ssbd

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

SUSE Linux

Notified:  May 21, 2018 Updated:  May 22, 2018

Statement Date:   May 22, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see SUSE support document 7022937 for more details.

Vendor References

Synology

Notified:  May 21, 2018 Updated:  May 22, 2018

Statement Date:   May 22, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Synology security advisory SA-18:23 for more information.

Vendor References

Ubuntu

Notified:  May 21, 2018 Updated:  May 21, 2018

Statement Date:   May 22, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see the Ubuntu Security Team KnowledgeBase article for more details.

Vendor References

VMware

Notified:  May 04, 2018 Updated:  May 21, 2018

Statement Date:   May 21, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see VMware Article 54951 for further details.

Vendor References

Amazon

Notified:  May 04, 2018 Updated:  May 23, 2018

Statement Date:   May 22, 2018

Status

  Not Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

Please see Amazon's statement for more details

Vendor References

ASP Linux

Notified:  May 21, 2018 Updated:  May 21, 2018

Status

  Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor References

    Acer

    Notified:  May 21, 2018 Updated:  May 21, 2018

    Status

      Unknown

    Vendor Statement

    No statement is currently available from the vendor regarding this vulnerability.

    Vendor References

      AirWatch

      Notified:  May 21, 2018 Updated:  May 21, 2018

      Status

        Unknown

      Vendor Statement

      No statement is currently available from the vendor regarding this vulnerability.

      Vendor References

        Alpine Linux

        Notified:  May 21, 2018 Updated:  May 21, 2018

        Status

          Unknown

        Vendor Statement

        No statement is currently available from the vendor regarding this vulnerability.

        Vendor References

          Android Open Source Project

          Notified:  May 21, 2018 Updated:  May 21, 2018

          Status

            Unknown

          Vendor Statement

          No statement is currently available from the vendor regarding this vulnerability.

          Vendor References

            Arch Linux

            Notified:  May 21, 2018 Updated:  May 21, 2018

            Status

              Unknown

            Vendor Statement

            No statement is currently available from the vendor regarding this vulnerability.

            Vendor References

              Arista Networks, Inc.

              Notified:  May 21, 2018 Updated:  May 21, 2018

              Status

                Unknown

              Vendor Statement

              No statement is currently available from the vendor regarding this vulnerability.

              Vendor References

                AsusTek Computer Inc.

                Notified:  May 21, 2018 Updated:  May 21, 2018

                Status

                  Unknown

                Vendor Statement

                No statement is currently available from the vendor regarding this vulnerability.

                Vendor References

                  Barnes and Noble

                  Notified:  May 21, 2018 Updated:  May 21, 2018

                  Status

                    Unknown

                  Vendor Statement

                  No statement is currently available from the vendor regarding this vulnerability.

                  Vendor References

                    BlackBerry

                    Notified:  May 21, 2018 Updated:  May 21, 2018

                    Status

                      Unknown

                    Vendor Statement

                    No statement is currently available from the vendor regarding this vulnerability.

                    Vendor References

                      Blunk Microsystems

                      Notified:  May 21, 2018 Updated:  May 21, 2018

                      Status

                        Unknown

                      Vendor Statement

                      No statement is currently available from the vendor regarding this vulnerability.

                      Vendor References

                        CMX Systems

                        Notified:  May 21, 2018 Updated:  May 21, 2018

                        Status

                          Unknown

                        Vendor Statement

                        No statement is currently available from the vendor regarding this vulnerability.

                        Vendor References

                          CentOS

                          Notified:  May 21, 2018 Updated:  May 21, 2018

                          Status

                            Unknown

                          Vendor Statement

                          No statement is currently available from the vendor regarding this vulnerability.

                          Vendor References

                            Citrix

                            Notified:  May 21, 2018 Updated:  May 21, 2018

                            Status

                              Unknown

                            Vendor Statement

                            No statement is currently available from the vendor regarding this vulnerability.

                            Vendor References

                              Contiki OS

                              Notified:  May 21, 2018 Updated:  May 21, 2018

                              Status

                                Unknown

                              Vendor Statement

                              No statement is currently available from the vendor regarding this vulnerability.

                              Vendor References

                                CoreOS

                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                Status

                                  Unknown

                                Vendor Statement

                                No statement is currently available from the vendor regarding this vulnerability.

                                Vendor References

                                  Cricket Wireless

                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                  Status

                                    Unknown

                                  Vendor Statement

                                  No statement is currently available from the vendor regarding this vulnerability.

                                  Vendor References

                                    Debian GNU/Linux

                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                    Status

                                      Unknown

                                    Vendor Statement

                                    No statement is currently available from the vendor regarding this vulnerability.

                                    Vendor References

                                      Dell SecureWorks

                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                      Status

                                        Unknown

                                      Vendor Statement

                                      No statement is currently available from the vendor regarding this vulnerability.

                                      Vendor References

                                        DesktopBSD

                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                        Status

                                          Unknown

                                        Vendor Statement

                                        No statement is currently available from the vendor regarding this vulnerability.

                                        Vendor References

                                          DragonFly BSD Project

                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                          Status

                                            Unknown

                                          Vendor Statement

                                          No statement is currently available from the vendor regarding this vulnerability.

                                          Vendor References

                                            ENEA

                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                            Status

                                              Unknown

                                            Vendor Statement

                                            No statement is currently available from the vendor regarding this vulnerability.

                                            Vendor References

                                              Express Logic

                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                              Status

                                                Unknown

                                              Vendor Statement

                                              No statement is currently available from the vendor regarding this vulnerability.

                                              Vendor References

                                                F5 Networks, Inc.

                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                Status

                                                  Unknown

                                                Vendor Statement

                                                No statement is currently available from the vendor regarding this vulnerability.

                                                Vendor References

                                                  Fedora Project

                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                  Status

                                                    Unknown

                                                  Vendor Statement

                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                  Vendor References

                                                    FreeBSD Project

                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                    Status

                                                      Unknown

                                                    Vendor Statement

                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                    Vendor References

                                                      Fujitsu

                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                      Status

                                                        Unknown

                                                      Vendor Statement

                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                      Vendor References

                                                        GIGABYTE

                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                        Status

                                                          Unknown

                                                        Vendor Statement

                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                        Vendor References

                                                          Geexbox

                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                          Status

                                                            Unknown

                                                          Vendor Statement

                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                          Vendor References

                                                            Gentoo Linux

                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                            Status

                                                              Unknown

                                                            Vendor Statement

                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                            Vendor References

                                                              Google

                                                              Notified:  May 04, 2018 Updated:  May 04, 2018

                                                              Status

                                                                Unknown

                                                              Vendor Statement

                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                              Vendor References

                                                                HTC

                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                Status

                                                                  Unknown

                                                                Vendor Statement

                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                Vendor References

                                                                  HardenedBSD

                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                  Status

                                                                    Unknown

                                                                  Vendor Statement

                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                  Vendor References

                                                                    Hewlett Packard Enterprise

                                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                    Status

                                                                      Unknown

                                                                    Vendor Statement

                                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                                    Vendor References

                                                                      HomeSeer

                                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                      Status

                                                                        Unknown

                                                                      Vendor Statement

                                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                                      Vendor References

                                                                        Huawei Technologies

                                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                        Status

                                                                          Unknown

                                                                        Vendor Statement

                                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                                        Vendor References

                                                                          IBM Corporation (zseries)

                                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                          Status

                                                                            Unknown

                                                                          Vendor Statement

                                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                                          Vendor References

                                                                            IBM Global Services

                                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                            Status

                                                                              Unknown

                                                                            Vendor Statement

                                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                                            Vendor References

                                                                              IBM eServer

                                                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                              Status

                                                                                Unknown

                                                                              Vendor Statement

                                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                                              Vendor References

                                                                                Illumos

                                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                Status

                                                                                  Unknown

                                                                                Vendor Statement

                                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                                Vendor References

                                                                                  Joyent

                                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                  Status

                                                                                    Unknown

                                                                                  Vendor Statement

                                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                                  Vendor References

                                                                                    Juniper Networks

                                                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                    Status

                                                                                      Unknown

                                                                                    Vendor Statement

                                                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                                                    Vendor References

                                                                                      Kyocera Communications

                                                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                      Status

                                                                                        Unknown

                                                                                      Vendor Statement

                                                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                                                      Vendor References

                                                                                        LG Electronics

                                                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                        Status

                                                                                          Unknown

                                                                                        Vendor Statement

                                                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                                                        Vendor References

                                                                                          Lenovo

                                                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                          Status

                                                                                            Unknown

                                                                                          Vendor Statement

                                                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                                                          Vendor References

                                                                                            Linux Kernel

                                                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                            Status

                                                                                              Unknown

                                                                                            Vendor Statement

                                                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                                                            Vendor References

                                                                                              Lynx Software Technologies

                                                                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                              Status

                                                                                                Unknown

                                                                                              Vendor Statement

                                                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                                                              Vendor References

                                                                                                Micro Focus

                                                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                Status

                                                                                                  Unknown

                                                                                                Vendor Statement

                                                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                                                Vendor References

                                                                                                  MontaVista Software, Inc.

                                                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                  Status

                                                                                                    Unknown

                                                                                                  Vendor Statement

                                                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                                                  Vendor References

                                                                                                    Mozilla

                                                                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                    Status

                                                                                                      Unknown

                                                                                                    Vendor Statement

                                                                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                                                                    Vendor References

                                                                                                      NEC Corporation

                                                                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                      Status

                                                                                                        Unknown

                                                                                                      Vendor Statement

                                                                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                                                                      Vendor References

                                                                                                        NVIDIA

                                                                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                        Status

                                                                                                          Unknown

                                                                                                        Vendor Statement

                                                                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                                                                        Vendor References

                                                                                                          NetBSD

                                                                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                          Status

                                                                                                            Unknown

                                                                                                          Vendor Statement

                                                                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                                                                          Vendor References

                                                                                                            Nexenta

                                                                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                            Status

                                                                                                              Unknown

                                                                                                            Vendor Statement

                                                                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                                                                            Vendor References

                                                                                                              Nokia

                                                                                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                              Status

                                                                                                                Unknown

                                                                                                              Vendor Statement

                                                                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                                                                              Vendor References

                                                                                                                OmniTI

                                                                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                Status

                                                                                                                  Unknown

                                                                                                                Vendor Statement

                                                                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                Vendor References

                                                                                                                  OpenBSD

                                                                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                  Status

                                                                                                                    Unknown

                                                                                                                  Vendor Statement

                                                                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                  Vendor References

                                                                                                                    OpenIndiana

                                                                                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                    Status

                                                                                                                      Unknown

                                                                                                                    Vendor Statement

                                                                                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                    Vendor References

                                                                                                                      Openwall GNU/*/Linux

                                                                                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                      Status

                                                                                                                        Unknown

                                                                                                                      Vendor Statement

                                                                                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                      Vendor References

                                                                                                                        Oracle Corporation

                                                                                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                        Status

                                                                                                                          Unknown

                                                                                                                        Vendor Statement

                                                                                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                        Vendor References

                                                                                                                          Pantech North America

                                                                                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                          Status

                                                                                                                            Unknown

                                                                                                                          Vendor Statement

                                                                                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                          Vendor References

                                                                                                                            QNX Software Systems Inc.

                                                                                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                            Status

                                                                                                                              Unknown

                                                                                                                            Vendor Statement

                                                                                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                            Vendor References

                                                                                                                              Rocket RTOS

                                                                                                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                              Status

                                                                                                                                Unknown

                                                                                                                              Vendor Statement

                                                                                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                              Vendor References

                                                                                                                                Roku

                                                                                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                Status

                                                                                                                                  Unknown

                                                                                                                                Vendor Statement

                                                                                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                Vendor References

                                                                                                                                  Samsung Mobile

                                                                                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                  Status

                                                                                                                                    Unknown

                                                                                                                                  Vendor Statement

                                                                                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                  Vendor References

                                                                                                                                    Slackware Linux Inc.

                                                                                                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                    Status

                                                                                                                                      Unknown

                                                                                                                                    Vendor Statement

                                                                                                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                    Vendor References

                                                                                                                                      SonicWall

                                                                                                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                      Status

                                                                                                                                        Unknown

                                                                                                                                      Vendor Statement

                                                                                                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                      Vendor References

                                                                                                                                        Sony Corporation

                                                                                                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                        Status

                                                                                                                                          Unknown

                                                                                                                                        Vendor Statement

                                                                                                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                        Vendor References

                                                                                                                                          The Open Group

                                                                                                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                          Status

                                                                                                                                            Unknown

                                                                                                                                          Vendor Statement

                                                                                                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                          Vendor References

                                                                                                                                            Tizen

                                                                                                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                            Status

                                                                                                                                              Unknown

                                                                                                                                            Vendor Statement

                                                                                                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                            Vendor References

                                                                                                                                              Toshiba America Information Systems, Inc.

                                                                                                                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                              Status

                                                                                                                                                Unknown

                                                                                                                                              Vendor Statement

                                                                                                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                              Vendor References

                                                                                                                                                Trend Micro

                                                                                                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                Status

                                                                                                                                                  Unknown

                                                                                                                                                Vendor Statement

                                                                                                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                Vendor References

                                                                                                                                                  TrueOS

                                                                                                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                  Status

                                                                                                                                                    Unknown

                                                                                                                                                  Vendor Statement

                                                                                                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                  Vendor References

                                                                                                                                                    Turbolinux

                                                                                                                                                    Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                    Status

                                                                                                                                                      Unknown

                                                                                                                                                    Vendor Statement

                                                                                                                                                    No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                    Vendor References

                                                                                                                                                      Unisys

                                                                                                                                                      Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                      Status

                                                                                                                                                        Unknown

                                                                                                                                                      Vendor Statement

                                                                                                                                                      No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                      Vendor References

                                                                                                                                                        Xen

                                                                                                                                                        Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                        Status

                                                                                                                                                          Unknown

                                                                                                                                                        Vendor Statement

                                                                                                                                                        No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                        Vendor References

                                                                                                                                                          Xiaomi

                                                                                                                                                          Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                          Status

                                                                                                                                                            Unknown

                                                                                                                                                          Vendor Statement

                                                                                                                                                          No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                          Vendor References

                                                                                                                                                            Xilinx

                                                                                                                                                            Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                            Status

                                                                                                                                                              Unknown

                                                                                                                                                            Vendor Statement

                                                                                                                                                            No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                            Vendor References

                                                                                                                                                              Zephyr Project

                                                                                                                                                              Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                              Status

                                                                                                                                                                Unknown

                                                                                                                                                              Vendor Statement

                                                                                                                                                              No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                              Vendor References

                                                                                                                                                                eCosCentric

                                                                                                                                                                Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                                Status

                                                                                                                                                                  Unknown

                                                                                                                                                                Vendor Statement

                                                                                                                                                                No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                                Vendor References

                                                                                                                                                                  m0n0wall

                                                                                                                                                                  Notified:  May 21, 2018 Updated:  May 21, 2018

                                                                                                                                                                  Status

                                                                                                                                                                    Unknown

                                                                                                                                                                  Vendor Statement

                                                                                                                                                                  No statement is currently available from the vendor regarding this vulnerability.

                                                                                                                                                                  Vendor References

                                                                                                                                                                    View all 100 vendors View less vendors


                                                                                                                                                                    CVSS Metrics

                                                                                                                                                                    Group Score Vector
                                                                                                                                                                    Base 4.4 AV:L/AC:M/Au:S/C:C/I:N/A:N
                                                                                                                                                                    Temporal 3.4 E:POC/RL:OF/RC:C
                                                                                                                                                                    Environmental 3.4 CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND

                                                                                                                                                                    References

                                                                                                                                                                    Acknowledgements

                                                                                                                                                                    Intel would like to acknowledge and thank Jann Horn of Google Project Zero (GPZ) and Ken Johnson of the Microsoft Security Response Center (MSRC) for independently reporting CVE-2018-3639. Intel would like to acknowledge and thank Zdenek Sojka, Rudolf Marek and Alex Zuepke from SYSGO AG ( https://sysgo.com ) for reporting CVE-2018-3640. Intel would also like to acknowledge and thank Innokentiy Sennovskiy from BiZone LLC (bi.zone).

                                                                                                                                                                    This document was written by Garret Wassermann.

                                                                                                                                                                    Other Information

                                                                                                                                                                    CVE IDs: CVE-2018-3639, CVE-2018-3640
                                                                                                                                                                    Date Public: 2018-05-21
                                                                                                                                                                    Date First Published: 2018-05-21
                                                                                                                                                                    Date Last Updated: 2018-06-19 15:17 UTC
                                                                                                                                                                    Document Revision: 95

                                                                                                                                                                    Sponsored by the Department of Homeland Security Office of Cybersecurity and Communications.