Video: Intel's patches for Spectre variant 4 will slow your CPU.
Microsoft has released a set of new microcode patches from Intel that address Spectre vulnerabilities, as well as the recently disclosed Foreshadow attacks.
The updates are available for all supported versions of Windows 10 and Windows Server.
As noted on the support page for Windows 10 version 1803, the microcode updates include mitigations for Spectre Variant 3a, CVE-2018-3640, Spectre Variant 4, CVE-2018-3639, as well as two of the Foreshadow bugs, CVE-2018-3615 and CVE-2018-3646, which are also known as L1TF or 'L1 Terminal Fault'.
As Microsoft recently highlighted, Windows machines with affected Intel CPUs will need microcode as well as software patches to mitigate the Foreshadow attacks.
SEE: 20 pro tips to make Windows 10 work the way you want (free PDF)
Microsoft began helping Intel deliver its microcode updates after Intel first started addressing the Meltdown and Spectre CPU flaws in January. The microcode updates help mitigate Spectre Variant 2, CVE 2017-5715.
Foreshadow includes CVE-2018-3615, which affects Intel's Software Guard Extensions (SGX) enclaves, while CVE-2018-3620 affects operating systems and System Management Mode (SMM) memory. CVE-2018-3646 impacts virtualization.
Microsoft made the updates, all dated 8/20/2018, available on the Microsoft Update Catalog this week.
Previous and related coverage
Windows Server admins using Hyper-V have some complicated choices to make about how best to mitigate Foreshadow on Intel hardware.
Intel has announced that there's yet another CPU security bug in its Core-based microprocessors.
The enterprise software giant is working on Spectre fixes for Solaris on Sparc V9.
Intel's Spectre variant 4 patch will be off by default, but users who turn it on are likely to see slower performance.
Reports are emerging of eight new 'Spectre-class' security CPU vulnerabilities.
A new variant of Spectre can expose the contents of memory that normally can't be accessed by the OS kernel.
Microsoft releases new Windows updates to address the Spectre variant 2 flaw affecting Intel chips.
AMD has released microcode updates for Spectre variant 2 that require Microsoft's latest Windows 10 patch.
A handful of CPU families that Intel was due to patch will now forever remain vulnerable.
Intel has listed a range of CPUs released between 2007 and 2011 that will not receive a firmware update to help guard against Spectre-related exploits.
Since the beginning of 2018, the number of cases has risen from three to 32.