Microsoft security update – Out-of-Band

Number: AV18-020
Date: 29 January 2018

Purpose

The purpose of this advisory is to bring attention to a recently released Microsoft Security Update to Disable Mitigation against Spectre, Variant 2.

Assessment

The summary covers an out-of-band support package deployment addressing issues with recently released microcode meant to address Spectre vulnerability variant 2.

Affected Products:

  • Windows 7 Service Pack 1
  • Windows 8.1
  • Windows 10
  • Windows 10 Version 1511
  • Windows 10 Version 1607
  • Windows 10 Version 1703
  • Windows 10 version 1709
  • Windows Server 2008 R2 Standard
  • Windows Server 2012 R2 Standard

CVE References: CVE-2017-5715

Suggested Action

CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.

References:

https://support.microsoft.com/en-us/help/4078130/update-to-disable-mitigation-against-spectre-variant-2

Date modified: