ALAS2-2018-1037 — Vulnetix

ALAS2-2018-1037 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	java-1.7.0-openjdk

Exploit Intelligence

spectre v4 : Speculative Store Bypass (CVE-2018-3639) proof of concept for Linux (github-poc-repo)
SpecuCheck is a Windows utility for checking the state of the software mitigations and hardware against CVE-2017-5754 (Meltdown), CVE-2017-5715 (Spectre v2), CVE-2018-3260 (Foreshadow), and CVE-2018-3639 (Spectre v4) (github-poc-repo)
Speculative Store Bypass (CVE-2018-3639) proof of concept for Linux (github-poc-repo)
spectre v4 : Speculative Store Bypass (CVE-2018-3639) proof of concept for Linux (github-poc)
Speculative Store Bypass (CVE-2018-3639) proof of concept for Linux (github-poc)
malindarathnayake/Intel-CVE-2018-3639-Mitigation_RegistryUpdate (github-poc)
Tools to exercise the Linux kernel mitigation for CVE-2018-3639 (aka Variant 4) using the Speculative Store Bypass Disable (SSBD) feature of x86 processors (github-poc)

Timeline

Jun 8, 2018 CVE Published

References

ALAS2-2018-1037: java-1.7.0-openjdk (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›