Please review the patch/release notes for your product and * This patch has remediation against CVE-2017-5715 but not against Workstation 12.x Any Important 12.5.8 None Workstation 14.x Any N/A Not affected N/A Product Version on Severity Apply patch WorkaroundĮSXi 6.5 Any Important ESXi650-201712101-SG NoneĮSXi 6.0 Any Important ESXi600-201711101-SG NoneĮSXi 5.5 Any Important ESXi550-201709101-SG * None VMware Product Running Replace with/ Mitigation Remediate the observed vulnerability in each release, if a solution The Common Vulnerabilities and Exposures project () hasĪssigned the identifiers CVE-2017-5753 (Bounds Check bypass) andĬVE-2017-5715 (Branch Target Injection) to these issues.Ĭolumn 5 of the following table lists the action required to Variants of the Bounds Check Bypass and Branch Target Injection The remediation listed in the table below is for the known Virtual Machine to another Virtual Machine that is running on the Result of exploitation may allow for information disclosure from one Inherent CPU performance optimization used in all modern processors.)ĮSXi, Workstation and Fusion are vulnerable to Bounds Check BypassĪnd Branch Target Injection issues resulting from this vulnerability. (Speculative execution is an automatic and Virtual memory read vulnerabilities across local security boundaries Out of mis-speculated CPU execution, leading to (at worst) arbitrary VMware Workstation Pro / Player (Workstation)īounds Check bypass and Branch Target Injection issuesĬPU data cache timing can be abused to efficiently leak information VMware ESXi, Workstation and Fusion updates address side-channel Side-channel analysis due to speculative execution. Synopsis: VMware ESXi, Workstation and Fusion updates address Next message: New VMSA-2018-0003 - vRealize Operations for Horizon, vRealize Operations for Published Applications, Workstation, Horizon View Client and Tools updates resolve multiple security vulnerabilities.Previous message: NEW VMSA-2018-0001 vSphere Data Protection (VDP) updates address multiple security issues.NEW VMSA VMSA-2018-0002 VMware ESXi, Workstation and Fusion updates address side-channel analysis due to speculative execution VMware Security Announcements security-announce at NEW VMSA VMSA-2018-0002 VMware ESXi, Workstation and Fusion updates address side-channel analysis due to speculative execution
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |