• MSRC: Intel: CVE-2022-0001 Branch History Injection Spectre v2

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » MSRC: Intel: CVE-2022-0001 Branch History Injection Spectre v2

    Author
    Topic
    Alex5723
    AskWoody Plus
    April 14, 2024 at 1:06 am #2659477

    https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0001

    Last updated: Apr 11, 2024

    ..The vulnerability assigned to this CVE is in certain processor models offered by Intel and was initially disclosed March 8, 2022. Intel published updates April 9, 2024 and this CVE is being documented in the Security Update Guide to inform customers of the available mitigation and its potential performance impact. The mitigation for this vulnerability is disabled by default and manual action is required for customers to be protected…

    To enable the mitigation for CVE-2022-0001 on Windows devices and clients using Intel Processors:

    reg add “HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management” /v FeatureSettingsOverride /t REG_DWORD /d 0x00800000 /f

    reg add “HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management” /v FeatureSettingsOverrideMask /t REG_DWORD /d 0x00000003 /f..

    In some cases, installing these updates will have a performance impact. In testing Microsoft has seen some performance impact with this mitigation. Microsoft values the security of its software and services but made the decision to allow users and administrators to evaluate the performance impact and risk exposure before deciding to enable the mitigation…

    https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/branch-history-injection.html

    ..Update: Since this guidance was originally published in 2022, the VU Amsterdam researchers have proposed new software techniques to identify and potentially exploit disclosure gadgets using BHI. Intel has added additional information to the technical documentation to address this development..

    2 users thanked author for this post.
    windbg, Cybertooth
    Reply | Quote
    Viewing 0 reply threads
    Author
    Replies
    • Paul T
      AskWoody MVP
      April 14, 2024 at 1:54 am #2659480

      This vulnerability affect VMs where an attacker does not have direct access to the data but can access the VM or hardware and are able to run code. If this is the case you are probably already toast!

      Home / SOHO users:  nothing to see here.
      Corporate / VM providers: put mitigations in place.

      cheers, Paul

       

      4 users thanked author for this post.
      steeviebops, Cybertooth, RetiredGeek, Alex5723
      Reply | Quote
    Viewing 0 reply threads
    Reply To: MSRC: Intel: CVE-2022-0001 Branch History Injection Spectre v2

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    June 2025
    S M T W T F S
    1234567
    891011121314
    15161718192021
    22232425262728
    2930  

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.