Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Microsoft Security Update for Spectre V2 - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft Security Update for Spectre V2

Microsoft has released a security update for the Spectre v2 (branch target injection) vulnerability. Unlike KB4091666, published earlier in the week, which updated the Intel microcode to mitigate Spectre V2 at the chip level, KB4078407 is a software based fix for Windows 10 and Windows Server 2016  the two updates together should fully mitigate against Spectre V2.  KB4079407 is a re-issue of the aborted fixes released in early January which caused issues on some systems.

Affected Products:
- Windows 10 version 1709
- Windows Server 2016 Version 1709
- Windows 10 Version 1703
- Windows 10 Version 1607
- Windows Server 2016
- Windows Server 2016 Datacenter
- Windows Server 2016 Essentials
- Windows Server 2016 Standard
- Windows 10 with Intel CPU

-- Rick Wanner MSISE - rwanner at isc dot sans dot edu - - Twitter:namedeplume (Protected)


324 Posts
ISC Handler
Apr 28th 2018

Sign Up for Free or Log In to start participating in the conversation!