Intel CPU Multiple Vulnerabilities (aka L1TF / Foreshadow)

Disclosed on Aug 14, 2018, multiple vulnerabilities were identified on CPUs which enables attacker to bypass security restrictions. This potentially allows unauthorized disclosure of information residing in L1 data cache of CPUs (aka L1 Terminal Fault, L1TF). This affects personal computers, servers and hypervisors running on a wide range of Intel CPUs.

Vulnerability

Referring to disclosed details, there are three variants of L1TF (ref: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html)

Variant 1: attack against SGX (CVE-2018-3615, Foreshadow-SGX)
Variant 2: attack against OS Kernel and SMM (CVE-2018-3620, Foreshadow-OS)
Variant 3: attack against virtual machines (CVE-2018-3646, Foreshadow-VMM)

Affected Products

The following Intel-based platforms are potentially impacted by these issues. Intel may modify this list at a later time.

Intel® Core™ i3/i5/i7/M processor (45nm and 32nm)
2nd/3rd/4th/5th/6th/7th/8th generation Intel® Core™ processors
Intel® Core™ X-series Processor Family for Intel® X99/X299 platforms
Intel® Xeon® processor 3400/3600/5500/5600/6500/7500 series
Intel® Xeon® Processor E3 v1/v2/v3/v4/v5/v6 Family
Intel® Xeon® Processor E5 v1/v2/v3/v4 Family
Intel® Xeon® Processor E7 v1/v2/v3/v4 Family
Intel® Xeon® Processor Scalable Family
Intel® Xeon® Processor D (1500, 2100)

Available Patches

Intel has worked with operating system vendors, equipment manufacturers, and other ecosystem partners to develop platform firmware and software updates that can help protect systems from these methods.

End users and systems administrators should check with their system manufacturers and system software vendors and apply any available updates as soon as practical.

Please note that:

Some patches may affect the performance of the system, so before installing the patches, please visit hardware and software vendor website for more detail information and get appropriate patches.
Patches will be provided by each vendor and might be applicable to some specific version only.

Vendor	Information to Note	Patches Status	Vendor Website
CPU Hardware
Intel		Patches Available	https://www.intel.com/content/www/us/en/architecture-and-technology/l1tf.html
Operating System / Software
Microsoft	Microsoft Cloud Microsoft has deployed mitigations across their cloud services which reinforce the isolation between customers. Customers who host untrusted code inside their applications should see Guidance for mitigating speculative execution side-channel vulnerabilities in Azure. Windows Client Install OS security updates Clients using Hyper-V feature that rely on Virtualization Based Security (VBS) may also requires firmware update Windows Server Installs OS security updates Hypervisors also require firmware updates. Microsoft Hyper-V Refer to Windows Server above	Patches Available	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018
Redhat		Patches Available	https://access.redhat.com/security/vulnerabilities/L1TF
SUSE		Patches Available	https://www.suse.com/c/suse-addresses-the-l1-terminal-fault-issue/
Ubuntu		Patches Available	https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/L1TF
Cisco		Patches Available	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel
Huawei		Patches Available	https://www.huawei.com/en/psirt/security-advisories/huawei-sa-201800815-01-cpu-en
VMWare	CVE-2018-3615: does not affect VMware products and/or services. CVE-2018-3020: mitigate in guest OS CVE-2018-3646: hypervisor-specific mitigation for vShpere, Hosted (Workstation/Fusion), and VMWare SaaS	Patches Available	https://kb.vmware.com/s/article/55636 https://www.vmware.com/security/advisories/VMSA-2018-0020.html

Reference:

Enquiry

Department IT Support (For Staff only)
ITSC Service Desk
- ITSC Service Desk: http://servicedesk.itsc.cuhk.edu.hk
- Phone: 3943 8845 (Office Hours)

Updated on: 16 Aug 2018

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.