CVE-2018-3639: Infoleak

Published Apr 13, 2018
·
Updated

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization).

It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire).

As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.

Other sources

EFI. An information disclosure issue was addressed with a microcode update. This ensures that older data read from recently-written-to addresses cannot be read via a speculative side-channel.

Microcode. An information disclosure issue was addressed with a microcode update. This ensures that older data read from recently-written-to addresses cannot be read via a speculative side-channel.

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.

Credit

Jann Horn@@tehjh(Google Project Zero), Ken Johnson(the Microsoft Security Response Center)

Affected Software

820 affected componentsFixes available
redhat/kernel<0:2.6.18-348.40.1.el5
0:2.6.18-348.40.1.el5
redhat/kernel<0:2.6.18-433.el5
0:2.6.18-433.el5
redhat/java<1.7.0-openjdk-1:1.7.0.181-2.6.14.8.el6_9
1.7.0-openjdk-1:1.7.0.181-2.6.14.8.el6_9
redhat/java<1.8.0-openjdk-1:1.8.0.171-8.b10.el6_9
1.8.0-openjdk-1:1.8.0.171-8.b10.el6_9
redhat/kernel<0:2.6.32-696.30.1.el6
0:2.6.32-696.30.1.el6
redhat/qemu-kvm<2:0.12.1.2-2.503.el6_9.6
2:0.12.1.2-2.503.el6_9.6
redhat/libvirt<0:0.10.2-62.el6_9.2
0:0.10.2-62.el6_9.2
redhat/kernel<0:2.6.32-754.el6
0:2.6.32-754.el6
redhat/qemu-kvm<2:0.12.1.2-2.506.el6_10.1
2:0.12.1.2-2.506.el6_10.1
redhat/kernel<0:2.6.32-754.2.1.el6
0:2.6.32-754.2.1.el6
redhat/kernel<0:2.6.32-358.88.4.el6
0:2.6.32-358.88.4.el6
redhat/qemu-kvm<2:0.12.1.2-2.355.el6_4.11
2:0.12.1.2-2.355.el6_4.11
redhat/libvirt<0:0.10.2-18.el6_4.17
0:0.10.2-18.el6_4.17
redhat/kernel<0:2.6.32-358.91.4.el6
0:2.6.32-358.91.4.el6
redhat/kernel<0:2.6.32-431.89.4.el6
0:2.6.32-431.89.4.el6
redhat/qemu-kvm<2:0.12.1.2-2.415.el6_5.18
2:0.12.1.2-2.415.el6_5.18
redhat/libvirt<0:0.10.2-29.el6_5.16
0:0.10.2-29.el6_5.16
redhat/kernel<0:2.6.32-504.69.3.el6
0:2.6.32-504.69.3.el6
redhat/qemu-kvm<2:0.12.1.2-2.448.el6_6.6
2:0.12.1.2-2.448.el6_6.6
redhat/libvirt<0:0.10.2-46.el6_6.8
0:0.10.2-46.el6_6.8
redhat/kernel<0:2.6.32-504.72.1.el6
0:2.6.32-504.72.1.el6
redhat/libvirt<0:0.10.2-46.el6_6.9
0:0.10.2-46.el6_6.9
redhat/kernel<0:2.6.32-573.55.4.el6
0:2.6.32-573.55.4.el6
redhat/qemu-kvm<2:0.12.1.2-2.479.el6_7.7
2:0.12.1.2-2.479.el6_7.7
redhat/libvirt<0:0.10.2-54.el6_7.8
0:0.10.2-54.el6_7.8
redhat/kernel<0:2.6.32-573.59.1.el6
0:2.6.32-573.59.1.el6
redhat/kernel<0:2.6.32-573.60.1.el6
0:2.6.32-573.60.1.el6
redhat/kernel-rt<0:3.10.0-862.3.2.rt56.808.el7
0:3.10.0-862.3.2.rt56.808.el7
redhat/kernel-rt<0:3.10.0-862.6.3.rt56.811.el7
0:3.10.0-862.6.3.rt56.811.el7
redhat/kernel<0:3.10.0-862.3.2.el7
0:3.10.0-862.3.2.el7
redhat/libvirt<0:3.9.0-14.el7_5.5
0:3.9.0-14.el7_5.5
redhat/qemu-kvm<10:1.5.3-156.el7_5.2
10:1.5.3-156.el7_5.2
redhat/java<1.7.0-openjdk-1:1.7.0.181-2.6.14.8.el7_5
1.7.0-openjdk-1:1.7.0.181-2.6.14.8.el7_5
redhat/java<1.8.0-openjdk-1:1.8.0.171-8.b10.el7_5
1.8.0-openjdk-1:1.8.0.171-8.b10.el7_5
redhat/kernel<0:3.10.0-862.6.3.el7
0:3.10.0-862.6.3.el7
redhat/kernel-alt<0:4.14.0-49.8.1.el7a
0:4.14.0-49.8.1.el7a
redhat/kernel-alt<0:4.14.0-115.el7a
0:4.14.0-115.el7a
redhat/kernel<0:3.10.0-327.66.5.el7
0:3.10.0-327.66.5.el7
redhat/qemu-kvm<10:1.5.3-105.el7_2.17
10:1.5.3-105.el7_2.17
redhat/libvirt<0:1.2.17-13.el7_2.8
0:1.2.17-13.el7_2.8
redhat/kernel<0:3.10.0-327.71.1.el7
0:3.10.0-327.71.1.el7
redhat/kernel<0:3.10.0-514.48.5.el7
0:3.10.0-514.48.5.el7
redhat/libvirt<0:2.0.0-10.el7_3.12
0:2.0.0-10.el7_3.12
redhat/qemu-kvm<10:1.5.3-126.el7_3.14
10:1.5.3-126.el7_3.14
redhat/kernel<0:3.10.0-514.51.1.el7
0:3.10.0-514.51.1.el7
redhat/kernel<0:3.10.0-514.53.1.el7
0:3.10.0-514.53.1.el7
redhat/kernel<0:3.10.0-693.25.7.el7
0:3.10.0-693.25.7.el7
redhat/libvirt<0:3.2.0-14.el7_4.10
0:3.2.0-14.el7_4.10
redhat/qemu-kvm<10:1.5.3-141.el7_4.7
10:1.5.3-141.el7_4.7
redhat/kernel<0:3.10.0-693.33.1.el7
0:3.10.0-693.33.1.el7
redhat/kernel<0:3.10.0-693.37.4.el7
0:3.10.0-693.37.4.el7
redhat/qemu-kvm-rhev<10:2.9.0-16.el7_4.17
10:2.9.0-16.el7_4.17
redhat/kernel-rt<1:3.10.0-693.25.7.rt56.615.el6
1:3.10.0-693.25.7.rt56.615.el6
redhat/kernel-rt<1:3.10.0-693.37.4.rt56.629.el6
1:3.10.0-693.37.4.rt56.629.el6
redhat/qemu-kvm-rhev<10:2.10.0-21.el7_5.3
10:2.10.0-21.el7_5.3
redhat/vdsm<0:4.20.27.2-1.el7e
0:4.20.27.2-1.el7e
redhat/rhvm-setup-plugins<0:4.2.9-1.el7e
0:4.2.9-1.el7e
redhat/rhvm-setup-plugins<0:4.2.10-1.el7e
0:4.2.10-1.el7e
redhat/rhvm-setup-plugins<0:4.3.0-1.el7e
0:4.3.0-1.el7e
redhat/rhev-hypervisor7<0:7.3-20180521.1.el6e
0:7.3-20180521.1.el6e
redhat/rhev-hypervisor7<0:7.3-20180710.1.el6e
0:7.3-20180710.1.el6e
redhat/qemu-kvm-rhev<10:2.6.0-28.el7_3.17
10:2.6.0-28.el7_3.17
redhat/vdsm<0:4.17.45-1.el7e
0:4.17.45-1.el7e
redhat/rhev-hypervisor7<0:7.3-20180521.1.el7e
0:7.3-20180521.1.el7e
redhat/rhev-hypervisor7<0:7.3-20180710.1.el7e
0:7.3-20180710.1.el7e
redhat/rhevm-setup-plugins<0:3.6.7-1.el6e
0:3.6.7-1.el6e
debian/qemu<=1:2.8+dfsg-6, <=1:2.8+dfsg-6+deb9u4, <=1:2.12+dfsg-3
1:2.8+dfsg-6+deb9u51:3.1+dfsg-1
Apple macOS Mojave<10.14.1
10.14.1
Apple High Sierra
Apple Sierra
Apple macOS Mojave<10.14
10.14
Intel Atom C=c2308
Intel Atom C=c3308
Intel Atom C=c3338
Intel Atom C=c3508
Intel Atom C=c3538
Intel Atom C=c3558
Intel Atom C=c3708
Intel Atom C=c3750
Intel Atom C=c3758
Intel Atom C=c3808
Intel Atom C=c3830
Intel Atom C=c3850
Intel Atom C=c3858
Intel Atom C=c3950
Intel Atom C=c3955
Intel Atom C=c3958
Intel Atom E=e3805
Intel Atom E=e3815
Intel Atom E=e3825
Intel Atom E=e3826
Intel Atom E=e3827
Intel Atom E=e3845
Intel Atom X5-e3930
Intel Atom X5-e3940
Intel Atom X7-e3950
Intel Atom Z=z2420
Intel Atom Z=z2460
Intel Atom Z=z2480
Intel Atom Z=z2520
Intel Atom Z=z2560
Intel Atom Z=z2580
Intel Atom Z=z2760
Intel Atom Z=z3460
Intel Atom Z=z3480
Intel Atom Z=z3530
Intel Atom Z=z3560
Intel Atom Z=z3570
Intel Atom Z=z3580
Intel Atom Z=z3590
Intel Atom Z=z3735d
Intel Atom Z=z3735e
Intel Atom Z=z3735f
Intel Atom Z=z3735g
Intel Atom Z=z3736f
Intel Atom Z=z3736g
Intel Atom Z=z3740
Intel Atom Z=z3740d
Intel Atom Z=z3745
Intel Atom Z=z3745d
Intel Atom Z=z3770
Intel Atom Z=z3770d
Intel Atom Z=z3775
Intel Atom Z=z3775d
Intel Atom Z=z3785
Intel Atom Z=z3795
Intel Celeron J=j3455
Intel Celeron J=j4005
Intel Celeron J=j4105
Intel Celeron N=n3450
Intel Core I3=32nm
Intel Core I3=45nm
Intel Core I5=32nm
Intel Core I5=45nm
Intel Core I7=32nm
Intel Core I7=45nm
Intel Core M=32nm
Intel Core M=45nm
Intel Pentium=n4000
Intel Pentium=n4100
Intel Pentium=n4200
Intel Pentium J=j4205
Intel Pentium Silver=j5005
Intel Pentium Silver=n5000
Intel Xeon E-1105c
Intel Xeon E3=125c_
Intel Xeon E3=1220_
Intel Xeon E3=1275_
Intel Xeon E3=1505m_v6
Intel Xeon E3=1515m_v5
Intel Xeon E3=1535m_v5
Intel Xeon E3=1535m_v6
Intel Xeon E3=1545m_v5
Intel Xeon E3=1558l_v5
Intel Xeon E3=1565l_v5
Intel Xeon E3=1575m_v5
Intel Xeon E3=1578l_v5
Intel Xeon E3=1585_v5
Intel Xeon E3=1585l_v5
Intel Xeon E3=3600
Intel Xeon E3=5600
Intel Xeon E3=7500
Intel Xeon E3=e5502
Intel Xeon E3=e5503
Intel Xeon E3=e5504
Intel Xeon E3=e5506
Intel Xeon E3=e5507
Intel Xeon E3=e5520
Intel Xeon E3=e5530
Intel Xeon E3=e5540
Intel Xeon E3=e6510
Intel Xeon E3=e6540
Intel Xeon E3=e6550
Intel Xeon E3=l3403
Intel Xeon E3=l3406
Intel Xeon E3=l3426
Intel Xeon E3=l5506
Intel Xeon E3=l5508_
Intel Xeon E3=l5518_
Intel Xeon E3=l5520
Intel Xeon E3=l5530
Intel Xeon E3=w5580
Intel Xeon E3=w5590
Intel Xeon E3=x3430
Intel Xeon E3=x3440
Intel Xeon E3=x3450
Intel Xeon E3=x3460
Intel Xeon E3=x3470
Intel Xeon E3=x3480
Intel Xeon E3=x5550
Intel Xeon E3=x5560
Intel Xeon E3=x5570
Intel Xeon E3 1105c V2
Intel Xeon E3 1125c V2
Intel Xeon E3 1220 V2
Intel Xeon E3 1220 V3
Intel Xeon E3 1220 V5
Intel Xeon E3 1220 V6
Intel Xeon E3 12201
Intel Xeon E3 12201 V2
Intel Xeon E3 1220l V3
Intel Xeon E3 1225
Intel Xeon E3 1225 V2
Intel Xeon E3 1225 V3
Intel Xeon E3 1225 V5
Intel Xeon E3 1225 V6
Intel Xeon E3 1226 V3
Intel Xeon E3 1230
Intel Xeon E3 1230 V2
Intel Xeon E3 1230 V3
Intel Xeon E3 1230 V5
Intel Xeon E3 1230 V6
Intel Xeon E3 1230l V3
Intel Xeon E3 1231 V3
Intel Xeon E3 1235
Intel Xeon E3 1235l V5
Intel Xeon E3 1240
Intel Xeon E3 1240 V2
Intel Xeon E3 1240 V3
Intel Xeon E3 1240 V5
Intel Xeon E3 1240 V6
Intel Xeon E3 1240l V3
Intel Xeon E3 1240l V5
Intel Xeon E3 1241 V3
Intel Xeon E3 1245
Intel Xeon E3 1245 V2
Intel Xeon E3 1245 V3
Intel Xeon E3 1245 V5
Intel Xeon E3 1245 V6
Intel Xeon E3 1246 V3
Intel Xeon E3 1258l V4
Intel Xeon E3 1260l
Intel Xeon E3 1260l V5
Intel Xeon E3 1265l V2
Intel Xeon E3 1265l V3
Intel Xeon E3 1265l V4
Intel Xeon E3 1268l V3
Intel Xeon E3 1268l V5
Intel Xeon E3 1270
Intel Xeon E3 1270 V2
Intel Xeon E3 1270 V3
Intel Xeon E3 1270 V5
Intel Xeon E3 1270 V6
Intel Xeon E3 1271 V3
Intel Xeon E3 1275 V2
Intel Xeon E3 1275 V3
Intel Xeon E3 1275 V5
Intel Xeon E3 1275 V6
Intel Xeon E3 1275l V3
Intel Xeon E3 1276 V3
Intel Xeon E3 1278l V4
Intel Xeon E3 1280
Intel Xeon E3 1280 V2
Intel Xeon E3 1280 V3
Intel Xeon E3 1280 V5
Intel Xeon E3 1280 V6
Intel Xeon E3 1281 V3
Intel Xeon E3 1285 V3
Intel Xeon E3 1285 V4
Intel Xeon E3 1285 V6
Intel Xeon E3 1285l V3
Intel Xeon E3 1285l V4
Intel Xeon E3 1286 V3
Intel Xeon E3 1286l V3
Intel Xeon E3 1290
Intel Xeon E3 1290 V2
Intel Xeon E3 1501l V6
Intel Xeon E3 1501m V6
Intel Xeon E3 1505l V5
Intel Xeon E3 1505l V6
Intel Xeon E3 1505m V5
Intel Xeon E5=2650l_v4
Intel Xeon E5=2658
Intel Xeon E5=2658_v2
Intel Xeon E5=2658_v3
Intel Xeon E5=2658_v4
Intel Xeon E5=2658a_v3
Intel Xeon E5=2660
Intel Xeon E5=2660_v2
Intel Xeon E5=2660_v3
Intel Xeon E5=2660_v4
Intel Xeon E5=2665
Intel Xeon E5=2667
Intel Xeon E5=2667_v2
Intel Xeon E5=2667_v3
Intel Xeon E5=2667_v4
Intel Xeon E5=2670
Intel Xeon E5=2670_v2
Intel Xeon E5=2670_v3
Intel Xeon E5=2680
Intel Xeon E5=2680_v2
Intel Xeon E5=2680_v3
Intel Xeon E5=2680_v4
Intel Xeon E5=2683_v3
Intel Xeon E5=2683_v4
Intel Xeon E5=2687w
Intel Xeon E5=2687w_v2
Intel Xeon E5=2687w_v3
Intel Xeon E5=2687w_v4
Intel Xeon E5=2690
Intel Xeon E5=2690_v2
Intel Xeon E5=2690_v3
Intel Xeon E5=2690_v4
Intel Xeon E5=2695_v2
Intel Xeon E5=2695_v3
Intel Xeon E5=2695_v4
Intel Xeon E5=2697_v2
Intel Xeon E5=2697_v3
Intel Xeon E5=2697_v4
Intel Xeon E5=2697a_v4
Intel Xeon E5=2698_v3
Intel Xeon E5=2698_v4
Intel Xeon E5=2699_v3
Intel Xeon E5=2699_v4
Intel Xeon E5=2699a_v4
Intel Xeon E5=2699r_v4
Intel Xeon E5=4603
Intel Xeon E5=4603_v2
Intel Xeon E5=4607
Intel Xeon E5=4607_v2
Intel Xeon E5=4610
Intel Xeon E5=4610_v2
Intel Xeon E5=4610_v3
Intel Xeon E5=4610_v4
Intel Xeon E5=4617
Intel Xeon E5=4620
Intel Xeon E5=4620_v2
Intel Xeon E5=4620_v3
Intel Xeon E5=4620_v4
Intel Xeon E5=4624l_v2
Intel Xeon E5=4627_v2
Intel Xeon E5=4627_v3
Intel Xeon E5=4627_v4
Intel Xeon E5=4628l_v4
Intel Xeon E5=4640
Intel Xeon E5=4640_v2
Intel Xeon E5=4640_v3
Intel Xeon E5=4640_v4
Intel Xeon E5=4648_v3
Intel Xeon E5=4650
Intel Xeon E5=4650_v2
Intel Xeon E5=4650_v3
Intel Xeon E5=4650_v4
Intel Xeon E5=4650l
Intel Xeon E5=4655_v3
Intel Xeon E5=4655_v4
Intel Xeon E5=4657l_v2
Intel Xeon E5=4660_v3
Intel Xeon E5=4660_v4
Intel Xeon E5=4667_v3
Intel Xeon E5=4667_v4
Intel Xeon E5=4669_v3
Intel Xeon E5=4669_v4
Intel Xeon E5 1428l
Intel Xeon E5 1428l V2
Intel Xeon E5 1428l V3
Intel Xeon E5 1620
Intel Xeon E5 1620 V2
Intel Xeon E5 1620 V3
Intel Xeon E5 1620 V4
Intel Xeon E5 1630 V3
Intel Xeon E5 1630 V4
Intel Xeon E5 1650
Intel Xeon E5 1650 V2
Intel Xeon E5 1650 V3
Intel Xeon E5 1650 V4
Intel Xeon E5 1660
Intel Xeon E5 1660 V2
Intel Xeon E5 1660 V3
Intel Xeon E5 1660 V4
Intel Xeon E5 1680 V3
Intel Xeon E5 1680 V4
Intel Xeon E5 2403
Intel Xeon E5 2403 V2
Intel Xeon E5 2407
Intel Xeon E5 2407 V2
Intel Xeon E5 2408l V3
Intel Xeon E5 2418l
Intel Xeon E5 2418l V2
Intel Xeon E5 2418l V3
Intel Xeon E5 2420
Intel Xeon E5 2420 V2
Intel Xeon E5 2428l
Intel Xeon E5 2428l V2
Intel Xeon E5 2428l V3
Intel Xeon E5 2430
Intel Xeon E5 2430 V2
Intel Xeon E5 2430l
Intel Xeon E5 2430l V2
Intel Xeon E5 2438l V3
Intel Xeon E5 2440
Intel Xeon E5 2440 V2
Intel Xeon E5 2448l
Intel Xeon E5 2448l V2
Intel Xeon E5 2450
Intel Xeon E5 2450 V2
Intel Xeon E5 2450l
Intel Xeon E5 2450l V2
Intel Xeon E5 2470
Intel Xeon E5 2470 V2
Intel Xeon E5 2603
Intel Xeon E5 2603 V2
Intel Xeon E5 2603 V3
Intel Xeon E5 2603 V4
Intel Xeon E5 2608l V3
Intel Xeon E5 2608l V4
Intel Xeon E5 2609
Intel Xeon E5 2609 V2
Intel Xeon E5 2609 V3
Intel Xeon E5 2609 V4
Intel Xeon E5 2618l V2
Intel Xeon E5 2618l V3
Intel Xeon E5 2618l V4
Intel Xeon E5 2620
Intel Xeon E5 2620 V2
Intel Xeon E5 2620 V3
Intel Xeon E5 2620 V4
Intel Xeon E5 2623 V3
Intel Xeon E5 2623 V4
Intel Xeon E5 2628l V2
Intel Xeon E5 2628l V3
Intel Xeon E5 2628l V4
Intel Xeon E5 2630
Intel Xeon E5 2630 V2
Intel Xeon E5 2630 V3
Intel Xeon E5 2630 V4
Intel Xeon E5 2630l
Intel Xeon E5 2630l V2
Intel Xeon E5 2630l V3
Intel Xeon E5 2630l V4
Intel Xeon E5 2637
Intel Xeon E5 2637 V2
Intel Xeon E5 2637 V3
Intel Xeon E5 2637 V4
Intel Xeon E5 2640
Intel Xeon E5 2640 V2
Intel Xeon E5 2640 V3
Intel Xeon E5 2640 V4
Intel Xeon E5 2643
Intel Xeon E5 2643 V2
Intel Xeon E5 2643 V3
Intel Xeon E5 2643 V4
Intel Xeon E5 2648l
Intel Xeon E5 2648l V2
Intel Xeon E5 2648l V3
Intel Xeon E5 2648l V4
Intel Xeon E5 2650
Intel Xeon E5 2650 V2
Intel Xeon E5 2650 V3
Intel Xeon E5 2650 V4
Intel Xeon E5 2650l
Intel Xeon E5 2650l V2
Intel Xeon E5 2650l V3
Intel Xeon E7=2803
Intel Xeon E7=2820
Intel Xeon E7=2830
Intel Xeon E7=2850
Intel Xeon E7=2850_v2
Intel Xeon E7=2860
Intel Xeon E7=2870
Intel Xeon E7=2870_v2
Intel Xeon E7=2880_v2
Intel Xeon E7=2890_v2
Intel Xeon E7=4807
Intel Xeon E7=4809_v2
Intel Xeon E7=4809_v3
Intel Xeon E7=4809_v4
Intel Xeon E7=4820
Intel Xeon E7=4820_v2
Intel Xeon E7=4820_v3
Intel Xeon E7=4820_v4
Intel Xeon E7=4830
Intel Xeon E7=4830_v2
Intel Xeon E7=4830_v3
Intel Xeon E7=4830_v4
Intel Xeon E7=4850
Intel Xeon E7=4850_v2
Intel Xeon E7=4850_v3
Intel Xeon E7=4850_v4
Intel Xeon E7=4860
Intel Xeon E7=4860_v2
Intel Xeon E7=4870
Intel Xeon E7=4870_v2
Intel Xeon E7=4880_v2
Intel Xeon E7=4890_v2
Intel Xeon E7=8830
Intel Xeon E7=8837
Intel Xeon E7=8850
Intel Xeon E7=8850_v2
Intel Xeon E7=8857_v2
Intel Xeon E7=8860
Intel Xeon E7=8860_v3
Intel Xeon E7=8860_v4
Intel Xeon E7=8867_v3
Intel Xeon E7=8867_v4
Intel Xeon E7=8867l
Intel Xeon E7=8870
Intel Xeon E7=8870_v2
Intel Xeon E7=8870_v3
Intel Xeon E7=8870_v4
Intel Xeon E7=8880_v2
Intel Xeon E7=8880_v3
Intel Xeon E7=8880_v4
Intel Xeon E7=8880l_v2
Intel Xeon E7=8880l_v3
Intel Xeon E7=8890_v2
Intel Xeon E7=8890_v3
Intel Xeon E7=8890_v4
Intel Xeon E7=8891_v2
Intel Xeon E7=8891_v3
Intel Xeon E7=8891_v4
Intel Xeon E7=8893_v2
Intel Xeon E7=8893_v3
Intel Xeon E7=8893_v4
Intel Xeon E7=8894_v4
Intel Xeon Gold=5115
Intel Xeon Gold=85115
Intel Xeon Gold=85118
Intel Xeon Gold=85119t
Intel Xeon Gold=85120
Intel Xeon Gold=85120t
Intel Xeon Gold=85122
Intel Xeon Gold=86126
Intel Xeon Gold=86126f
Intel Xeon Gold=86126t
Intel Xeon Gold=86128
Intel Xeon Gold=86130
Intel Xeon Gold=86130f
Intel Xeon Gold=86130t
Intel Xeon Gold=86132
Intel Xeon Gold=86134
Intel Xeon Gold=86134m
Intel Xeon Gold=86136
Intel Xeon Gold=86138
Intel Xeon Gold=86138f
Intel Xeon Gold=86138t
Intel Xeon Gold=86140
Intel Xeon Gold=86140m
Intel Xeon Gold=86142
Intel Xeon Gold=86142f
Intel Xeon Gold=86142m
Intel Xeon Gold=86144
Intel Xeon Gold=86146
Intel Xeon Gold=86148
Intel Xeon Gold=86148f
Intel Xeon Gold=86150
Intel Xeon Gold=86152
Intel Xeon Gold=86154
Intel Xeon Platinum=8153
Intel Xeon Platinum=8156
Intel Xeon Platinum=8158
Intel Xeon Platinum=8160
Intel Xeon Platinum=8160f
Intel Xeon Platinum=8160m
Intel Xeon Platinum=8160t
Intel Xeon Platinum=8164
Intel Xeon Platinum=8168
Intel Xeon Platinum=8170
Intel Xeon Platinum=8170m
Intel Xeon Platinum=8176
Intel Xeon Platinum=8176f
Intel Xeon Platinum=8176m
Intel Xeon Platinum=8180
Intel Xeon Silver=4108
Intel Xeon Silver=4109t
Intel Xeon Silver=4110
Intel Xeon Silver=4112
Intel Xeon Silver=4114
Intel Xeon Silver=4114t
Intel Xeon Silver=4116
Intel Xeon Silver=4116t
Arm Cortex-a=15
Arm Cortex-a=57
Arm Cortex-a=72
redhat Mrg Realtime=2.0
redhat Openstack=7.0
redhat Openstack=8
redhat Openstack=9
redhat Openstack=10
redhat Openstack=12
redhat Openstack=13
redhat Virtualization Manager=4.2
redhat Virtualization Manager=4.3
redhat Enterprise Linux Desktop=6.0
redhat Enterprise Linux Desktop=7.0
redhat Enterprise Linux Eus=6.7
redhat Enterprise Linux Eus=7.3
redhat Enterprise Linux Eus=7.4
redhat Enterprise Linux Eus=7.5
redhat Enterprise Linux Eus=7.6
redhat Enterprise Linux Eus=7.7
redhat Enterprise Linux Server=6.0
redhat Enterprise Linux Server=7.0
redhat Enterprise Linux Server Aus=5.9
redhat Enterprise Linux Server Aus=6.4
redhat Enterprise Linux Server Aus=6.5
redhat Enterprise Linux Server Aus=6.6
redhat Enterprise Linux Server Aus=7.2
redhat Enterprise Linux Server Aus=7.3
redhat Enterprise Linux Server Aus=7.4
redhat Enterprise Linux Server Aus=7.7
redhat Enterprise Linux Server Tus=6.6
redhat Enterprise Linux Server Tus=7.2
redhat Enterprise Linux Server Tus=7.3
redhat Enterprise Linux Server Tus=7.4
redhat Enterprise Linux Server Tus=7.6
redhat Enterprise Linux Server Tus=7.7
redhat Enterprise Linux Workstation=6.0
redhat Enterprise Linux Workstation=7.0
Debian Debian Linux=8.0
Debian Debian Linux=9.0
Canonical Ubuntu Linux=12.04
Canonical Ubuntu Linux=14.04
Canonical Ubuntu Linux=16.04
Canonical Ubuntu Linux=17.10
Canonical Ubuntu Linux=18.04
Siemens Itc1500 Firmware<3.1
Siemens Itc1500=3
Siemens Itc1500 Pro Firmware<3.1
Siemens Itc1500 Pro=3
Siemens Itc1900 Firmware<3.1
Siemens Itc1900=3
Siemens Itc1900 Pro Firmware<3.1
Siemens Itc1900 Pro=3
Siemens Itc2200 Firmware<3.1
Siemens Itc2200=3
Siemens Itc2200 Pro Firmware<3.1
Siemens Itc2200 Pro=3
Oracle Local Service Management System>=13.0<=13.3
Oracle Solaris=11
Siemens Ruggedcom Ape Firmware
Siemens Ruggedcom Ape
Siemens Simatic Et 200 Sp Firmware<2.6
Siemens Simatic Et 200 Sp
Siemens Simatic Field Pg M4 Firmware<18.01.09
Siemens Simatic Field Pg M4
Siemens Simatic Field Pg M5 Firmware<22.01.06
Siemens Simatic Field Pg M5
Siemens Simatic Ipc3000 Smart Firmware<1.5
Siemens Simatic Ipc3000 Smart=2
Siemens Simatic Ipc347e Firmware<1.5
Siemens Simatic Ipc347e
Siemens Simatic Ipc427c Firmware
Siemens Simatic Ipc427c
Siemens Simatic Ipc427d Firmware<17.0x.14
Siemens Simatic Ipc427d
Siemens Simatic Ipc427e Firmware<21.01.09
Siemens Simatic Ipc427e
Siemens Simatic Ipc477c Firmware
Siemens Simatic Ipc477c
Siemens Simatic Ipc477d Firmware<17.0x.14
Siemens Simatic Ipc477d
Siemens Simatic Ipc477e Firmware<21.01.09
Siemens Simatic Ipc477e
Siemens Simatic Ipc477e Pro Firmware<21.01.09
Siemens Simatic Ipc477e Pro
Siemens Simatic Ipc547e Firmware<r1.30.0
Siemens Simatic Ipc547e
Siemens Simatic Ipc547g Firmware<r1.23.0
Siemens Simatic Ipc547g
Siemens Simatic Ipc627c Firmware<15.02.15
Siemens Simatic Ipc627c
Siemens Simatic Ipc627d Firmware<19.02.11
Siemens Simatic Ipc627d
Siemens Simatic Ipc647c Firmware<15.01.14
Siemens Simatic Ipc647c
Siemens Simatic Ipc647d Firmware<19.01.14
Siemens Simatic Ipc647d
Siemens Simatic Ipc677d Firmware<19.02.11
Siemens Simatic Ipc677d
Siemens Simatic Ipc677c Firmware<15.02.15
Siemens Simatic Ipc677c
Siemens Simatic Ipc827c Firmware<15.02.15
Siemens Simatic Ipc827c
Siemens Simatic Ipc827d Firmware<19.02.11
Siemens Simatic Ipc827d
Siemens Simatic Ipc847c Firmware<15.01.14
Siemens Simatic Ipc847c
Siemens Simatic Ipc847d Firmware<19.01.14
Siemens Simatic Ipc847d
Siemens Simatic Itp1000 Firmware<23.01.04
Siemens SIMATIC ITP1000
Siemens Simatic S7-1500 Firmware<2.6
Siemens Simatic S7-1500
Siemens Simotion P320-4e Firmware<17.0x.14
Siemens Simotion P320-4e
Siemens Sinumerik 840 D Sl Firmware
Siemens Sinumerik 840 D Sl
Siemens Sinumerik Pcu 50.5 Firmware<15.02.15
Siemens Sinumerik Pcu 50.5
Siemens Sinumerik Tcu 30.3 Firmware
Siemens Sinumerik Tcu 30.3
Siemens Sinema Remote Connect Firmware
Siemens SINEMA Remote Connect
Mitel MiCloud Management Portal
Mitel MiCollab
Mitel Mivoic Mx-one
Mitel Mivoice 5000
Mitel Mivoice Border Gateway
Mitel Mivoice Business
Mitel MiVoice Connect
Mitel Open Integration Gateway
SonicWall Cloud Global Management System
SonicWall Email Security
SonicWall Global Management System
SonicWall Secure Mobile Access
SonicWall Web Application Firewall
SonicWall SonicOSv
Schneider-electric Struxureware Data Center Expert<7.6.0
redhat Virtualization=4.0
redhat Enterprise Linux=7.0
Nvidia Jetson TX1<r28.3
Nvidia Jetson TX2<r28.3
Microsoft Surface
Microsoft Surface Book
Microsoft Surface Book=2
Microsoft Surface Pro=3
Microsoft Surface Pro=4
Microsoft Surface Pro=1796
Microsoft Surface Pro With Lte Advanced=1807
Microsoft Surface Studio
Microsoft Windows 10
Microsoft Windows 10=1607
Microsoft Windows 10=1703
Microsoft Windows 10=1709
Microsoft Windows 10=1803
Microsoft Windows 10=1809
Microsoft Windows 7=sp1
Microsoft Windows 8.1
Microsoft Windows Server 2008=r2-sp1
Microsoft Windows Server 2008=sp2
Microsoft Windows Server 2012
Microsoft Windows Server 2012=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2016=1709
Microsoft Windows Server 2016=1803
Linux Kernel
Intel x86 microprocessors
AMD x86 microprocessors
All of the following
Siemens Itc1500 Firmware<3.1
Siemens Itc1500=3
All of the following
Siemens Itc1500 Pro Firmware<3.1
Siemens Itc1500 Pro=3
All of the following
Siemens Itc1900 Firmware<3.1
Siemens Itc1900=3
All of the following
Siemens Itc1900 Pro Firmware<3.1
Siemens Itc1900 Pro=3
All of the following
Siemens Itc2200 Firmware<3.1
Siemens Itc2200=3
All of the following
Siemens Itc2200 Pro Firmware<3.1
Siemens Itc2200 Pro=3
All of the following
Siemens Ruggedcom Ape Firmware
Siemens Ruggedcom Ape
All of the following
Siemens Simatic Et 200 Sp Firmware<2.6
Siemens Simatic Et 200 Sp
All of the following
Siemens Simatic Field Pg M4 Firmware<18.01.09
Siemens Simatic Field Pg M4
All of the following
Siemens Simatic Field Pg M5 Firmware<22.01.06
Siemens Simatic Field Pg M5
All of the following
Siemens Simatic Ipc3000 Smart Firmware<1.5
Siemens Simatic Ipc3000 Smart=2
All of the following
Siemens Simatic Ipc347e Firmware<1.5
Siemens Simatic Ipc347e
All of the following
Siemens Simatic Ipc427c Firmware
Siemens Simatic Ipc427c
All of the following
Siemens Simatic Ipc427d Firmware<17.0x.14
Siemens Simatic Ipc427d
All of the following
Siemens Simatic Ipc427e Firmware<21.01.09
Siemens Simatic Ipc427e
All of the following
Siemens Simatic Ipc477c Firmware
Siemens Simatic Ipc477c
All of the following
Siemens Simatic Ipc477d Firmware<17.0x.14
Siemens Simatic Ipc477d
All of the following
Siemens Simatic Ipc477e Firmware<21.01.09
Siemens Simatic Ipc477e
All of the following
Siemens Simatic Ipc477e Pro Firmware<21.01.09
Siemens Simatic Ipc477e Pro
All of the following
Siemens Simatic Ipc547e Firmware<r1.30.0
Siemens Simatic Ipc547e
All of the following
Siemens Simatic Ipc547g Firmware<r1.23.0
Siemens Simatic Ipc547g
All of the following
Siemens Simatic Ipc627c Firmware<15.02.15
Siemens Simatic Ipc627c
All of the following
Siemens Simatic Ipc627d Firmware<19.02.11
Siemens Simatic Ipc627d
All of the following
Siemens Simatic Ipc647c Firmware<15.01.14
Siemens Simatic Ipc647c
All of the following
Siemens Simatic Ipc647d Firmware<19.01.14
Siemens Simatic Ipc647d
All of the following
Siemens Simatic Ipc677d Firmware<19.02.11
Siemens Simatic Ipc677d
All of the following
Siemens Simatic Ipc677c Firmware<15.02.15
Siemens Simatic Ipc677c
All of the following
Siemens Simatic Ipc827c Firmware<15.02.15
Siemens Simatic Ipc827c
All of the following
Siemens Simatic Ipc827d Firmware<19.02.11
Siemens Simatic Ipc827d
All of the following
Siemens Simatic Ipc847c Firmware<15.01.14
Siemens Simatic Ipc847c
All of the following
Siemens Simatic Ipc847d Firmware<19.01.14
Siemens Simatic Ipc847d
All of the following
Siemens Simatic Itp1000 Firmware<23.01.04
Siemens SIMATIC ITP1000
All of the following
Siemens Simatic S7-1500 Firmware<2.6
Siemens Simatic S7-1500
All of the following
Siemens Simotion P320-4e Firmware<17.0x.14
Siemens Simotion P320-4e
All of the following
Siemens Sinumerik 840 D Sl Firmware
Siemens Sinumerik 840 D Sl
All of the following
Siemens Sinumerik Pcu 50.5 Firmware<15.02.15
Siemens Sinumerik Pcu 50.5
All of the following
Siemens Sinumerik Tcu 30.3 Firmware
Siemens Sinumerik Tcu 30.3
All of the following
Siemens Sinema Remote Connect Firmware
Siemens SINEMA Remote Connect
All of the following
redhat Virtualization=4.0
redhat Enterprise Linux=7.0
debian/intel-microcode
3.20240813.1~deb11u13.20250812.1~deb11u13.20251111.1~deb12u13.20250812.1~deb12u13.20251111.1~deb13u13.20250812.1~deb13u13.20260227.1
debian/linux
5.10.223-15.10.257-16.1.170-36.1.174-16.12.86-16.12.90-27.0.10-17.0.12-1
debian/xen
4.14.6-14.14.5+94-ge49571868d-14.17.5+72-g01140da4e8-14.20.2+37-g61ff35323e-0+deb13u14.20.2+7-g1badcf5035-0+deb13u14.20.2+37-g61ff35323e-1

Remediation

Patch Available

https://bugs.chromium.org/p/project-zero/issues/detail?id=1528

Patch Available

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180012

Event History

Apr 13, 2018
Data Sourced
via Red Hat·07:14 AM
DescriptionSeverityAffected Software
May 21, 2018
CVE Published
09:00 PM
May 22, 2018
CVE Published
via MITRE·12:00 PM
Data Sourced
via MITRE·12:00 PM
DescriptionWeakness
Data Sourced
via NVD·12:29 PM
RemedyDescriptionSeverityWeaknessAffected Software
Jun 9, 2020
News Published
via The Register·07:39 PM
Jan 11, 2024
Data Sourced
via Launchpad·11:02 PM
Description
Jan 19, 2024
News Published
via The Register·11:36 PM
May 24, 2026
Data Sourced
via Ubuntu·10:05 AM
RemedyDescriptionSeverityAffected Software
Jun 10, 2026
Data Sourced
via Debian·10:31 AM
DescriptionAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2018-3639?

CVE-2018-3639 has a severity rating of High due to its potential to allow side-channel attacks through speculative execution.

2

How do I fix CVE-2018-3639?

To mitigate CVE-2018-3639, apply the latest updates from your operating system vendor that include the necessary microcode updates and kernel patches.

3

Which software is affected by CVE-2018-3639?

CVE-2018-3639 affects various versions of Windows, Linux kernels, and Intel x86 microprocessors among other platforms and products.

4

What are the potential impacts of CVE-2018-3639?

The potential impacts of CVE-2018-3639 include unauthorized data access and information leakage through side-channel attacks.

5

Is there a specific patch version for CVE-2018-3639?

Yes, specific patches for CVE-2018-3639 can be found in updated kernel versions provided by vendors such as Red Hat and Debian.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203