—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

Cisco Security Advisory: CPU Side-Channel Information Disclosure Vulnerabilities: May 2018

Advisory ID: cisco-sa-20180521-cpusidechannel

Revision: 1.0

For Public Release: 2018 May 22 01:00 GMT

Last Updated: 2018 May 22 01:00 GMT

CVE ID(s): CVE-2018-3639, CVE-2018-3640

+———————————————————————

Summary

=======

On May 21, 2018, researchers disclosed two vulnerabilities that take advantage of the implementation of speculative execution of instructions on many modern microprocessor architectures to perform side-channel information disclosure attacks. These vulnerabilities could allow an unprivileged, local attacker, in specific circumstances, to read privileged memory belonging to other processes.

The first vulnerability, CVE-2018-3639, is known as Spectre Variant 4 or SpectreNG. The second vulnerability, CVE-2018-3640, is known as Spectre Variant 3a. Both of these attacks are variants of the attacks disclosed in January 2018 and leverage cache-timing attacks to infer any disclosed data.

To exploit either of these vulnerabilities, an attacker must be able to run crafted or script code on an affected device. Although the underlying CPU and operating system combination in a product or service may be affected by these vulnerabilities, the majority of Cisco products are closed systems that do not allow customers to run custom code and are, therefore, not vulnerable. There is no vector to exploit them. Cisco products are considered potentially vulnerable only if they allow customers to execute custom code side-by-side with Cisco code on the same microprocessor.

A Cisco product that may be deployed as a virtual machine or a container, even while not directly affected by any of these vulnerabilities, could be targeted by such attacks if the hosting environment is vulnerable. Cisco recommends that customers harden their virtual environments, tightly control user access, and ensure that all security updates are installed. Customers who are deploying products as a virtual device in multi-tenant hosting environments should ensure that the underlying hardware, as well as operating system or hypervisor, is patched against the vulnerabilities in question.

Although Cisco cloud services are not directly affected by these vulnerabilities, the infrastructure on which they run may be impacted. Refer to the “Affected Products” section of this advisory for information about the impact of these vulnerabilities on Cisco cloud services.

Cisco will release software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel [“https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel”]

—–BEGIN PGP SIGNATURE—–
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=Y3Bn
—–END PGP SIGNATURE—–
_______________________________________________
cust-security-announce mailing list
cust-security-announce@cisco.com
To unsubscribe, send the command “unsubscribe” in the subject of your message to cust-security-announce-leave@cisco.com