CVE 2018-3640
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Variant 3a.
Related bugs and status
CVE-2018-3640 (Candidate) is related to these bugs:
Bug #1783385: intel-microcode: update to 20180703 drop
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1783385 | intel-microcode: update to 20180703 drop | intel-microcode (Ubuntu) | Undecided | Fix Released | ||
1783385 | intel-microcode: update to 20180703 drop | intel-microcode (Ubuntu Trusty) | Undecided | Fix Released | ||
1783385 | intel-microcode: update to 20180703 drop | intel-microcode (Ubuntu Bionic) | Undecided | Fix Released | ||
1783385 | intel-microcode: update to 20180703 drop | intel-microcode (Ubuntu Xenial) | Undecided | Fix Released |
Bug #1787126: Update microcode to 20180807 version
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1787126 | Update microcode to 20180807 version | intel-microcode (Ubuntu) | Undecided | Fix Released | ||
1787126 | Update microcode to 20180807 version | intel-microcode (Debian) | Unknown | Fix Released | ||
1787126 | Update microcode to 20180807 version | intel-microcode (Ubuntu Trusty) | Undecided | Fix Released | ||
1787126 | Update microcode to 20180807 version | intel-microcode (Ubuntu Bionic) | Undecided | Fix Released | ||
1787126 | Update microcode to 20180807 version | intel-microcode (Ubuntu Xenial) | Undecided | Fix Released |
Bug #1788665: Low 2D graphics performance with Windows 10 (1803) VGA passthrough VM using "Spectre" protection
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1788665 | Low 2D graphics performance with Windows 10 (1803) VGA passthrough VM using "Spectre" protection | QEMU | Undecided | Expired |
Bug #1828495: [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM.
Bug #1840745: backport extended amd spectre mitigations
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1840745 | backport extended amd spectre mitigations | libvirt (Ubuntu) | Undecided | Fix Released | ||
1840745 | backport extended amd spectre mitigations | qemu (Ubuntu) | Undecided | Fix Released | ||
1840745 | backport extended amd spectre mitigations | libvirt (Ubuntu Bionic) | Medium | Fix Released | ||
1840745 | backport extended amd spectre mitigations | qemu (Ubuntu Bionic) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.