
1. Server Hardwares
1.1. Intel Microcode Revision Guidance 2018-08-08
1.1.1. Variant 2
1.1.1.1. HPE 2018-08-03
1.1.1.2. DELL 2018-06-22
1.1.1.3. IBM/Lenovo 2018-07-12
1.1.1.4. Cisco 2018-07-06
1.1.2. Variant 3a, 4
1.1.2.1. Q2 2018 Speculative Execution Side Channel Update 2018-06-25
1.1.2.1.1. HPE 2018-07-03
1.1.2.1.2. DELL 2018-08-10
1.1.2.1.3. IBM/Lenovo 2018-08-15
1.1.2.1.4. Cisco 2018-08-07
1.1.3. L1 Terminal Fault
1.1.3.1. Q3 2018 Speculative Execution Side Channel Update 2018-08-14
1.1.3.1.1. HPE 2018-08-17
1.1.3.1.2. DELL 2018-08-14
1.1.3.1.3. IBM/Lenovo 2018-08-16
1.1.3.1.4. Cisco 2018-08-17
2. Mitigations
2.1. OS/Hypervisor
2.1.1. VMware
2.1.1.1. Speculative Execution 2018-07-10
2.1.1.1.1. Hypervisor Specific Mitigation VMSA-2018-0002.3 2018-01-22
2.1.1.1.2. Hypervisor-Assisted Guest Mitigation VMSA-2018-0004.3 2018-03-20
2.1.1.1.3. Operating System-Specific Mitigations 2018-02-09
2.1.1.2. Speculative Store Bypass 2018-06-28
2.1.1.2.1. Hypervisor-Assisted Guest Mitigation VMSA-2018-0012.1 2018-06-28
2.1.1.3. L1 Terminal Fault 2018-08-16
2.1.1.3.1. Hypervisor Specific Mitigation
2.1.1.3.2. Operating System-Specific Mitigations
2.1.2. Microsoft
2.1.2.1. Speculative Execution Side-Channel Vulnerabilities 2018-05-15
2.1.2.1.1. Windows
2.1.2.1.2. SQL Server 2018-03-15
2.1.2.2. Speculative Store Bypass 2018-08-08
2.1.2.2.1. Windows
2.1.2.3. L1 Terminal Fault 2018-08-15
2.1.2.3.1. Windows
2.1.3. Linux
2.1.3.1. Check Vulnerabilities
2.1.3.1.1. RedHat/CentOS
2.1.3.1.2. Ubuntu 2018-05-29
2.1.3.1.3. Debian
2.1.4. Citrix
2.1.4.1. Speculative Execution 2018-05-14
2.1.4.1.1. Variant 2
2.1.4.1.2. Variant 3
2.1.4.2. Speculative Store Bypass 2018-05-22
2.1.4.2.1. XenServer 7.0 - 7.4
2.1.4.3. L1 Terminal Fault 2018-08-14
2.1.4.3.1. XenServer 7.0 - 7.5
2.1.5. Xen
2.1.5.1. Speculative Execution 2018-02-23
2.1.5.2. Speculative Store Bypass 2018-05-21
2.1.5.3. L1 Terminal Fault 2018-08-14
2.1.6. Google 2018-07-10
2.1.6.1. Speculative Execution
2.1.6.1.1. Chrome Browser
2.1.7. Apple 2018-06-05
2.1.7.1. Speculative Execution
2.1.7.1.1. macOS High Sierra 10.13
2.1.7.1.2. macOS Sierra 10.12
2.1.7.1.3. macOS El Capitan 10.11
2.2. Web Browsers
2.2.1. Chrome
2.2.2. FireFox
2.2.3. IE 11 / Edge
2.2.4. Safari
3. Vulnerabilities
3.1. Spectre
3.1.1. CVE-2017-5753 (Variant 1 / Bound-Check Bypass)
3.1.1.1. OS Update (LFENCE)
3.1.2. CVE-2017-5715 (Variant 2 / Branch Target Injection)
3.1.2.1. AntiVirus (Windows) → CPU Microcode (Firmware/BIOS) → Hypervisor → OS Update (IBRS, IBPB, STIBP) * Retpoline (Linux)
3.2. Meltdown
3.2.1. CVE-2017-5754 (Variant 3 / Rogue Data Cache Load)
3.2.1.1. OS Update (KPTI/KVAS/KAISER/F**KWIT)
3.3. CVE-2018-3639 (Variant 4 / Speculative Store Bypass)
3.3.1. CPU Microcode (Firmware/BIOS) → Hypervisor → OS Update (SSBD)
3.4. CVE-2018-3640 (Variant 3a / Rogue System Register Read)
3.4.1. CPU Microcode (Firmware/BIOS) Update
3.5. Foreshadow
3.5.1. CVE-2018-3615 (L1 Terminal Fault - SGX)
3.5.1.1. CPU Microcode (Firmware/BIOS) Update
3.5.2. CVE-2018-3620 (L1 Terminal Fault - OS)
3.5.2.1. CPU Microcode (Firmware/BIOS) → OS Update
3.5.3. CVE-2018-3646 (L1 Terminal Fault - VMM)
3.5.3.1. Sequential-context attack vector
3.5.3.1.1. CPU Microcode (Firmware/BIOS) Update → Hypervisor Update
3.5.3.2. Concurrent-context attack vector
3.5.3.2.1. Hypervisor Update