Intel Core Microprocessors CVE-2018-3665 Information Disclosure Vulnerability

Bugtraq ID:	104460
Class:	Design Error
CVE:	CVE-2018-3665
Remote:	No
Local:	Yes
Published:	Jun 13 2018 12:00AM
Updated:	Jul 17 2018 12:00PM
Credit:	Julian Stecklina from Amazon Germany, Thomas Prescher from Cyberus Technology GmbH, Zdenek Sojka from SYSGO AG, and Colin Percival
Vulnerable:	Xen Xen 0 Redhat Virtualization Host 4 Redhat Enterprise Mrg 2 Redhat Enterprise Linux Workstation 7 Redhat Enterprise Linux Server - Extended Update Support 7.5 Redhat Enterprise Linux Server 7 Redhat Enterprise Linux for Scientific Computing 7 Redhat Enterprise Linux for Power, little endian - Extended Update Supp 7.5 Redhat Enterprise Linux for Power, little endian 7 Redhat Enterprise Linux for Power, big endian - Extended Update Support 7.5 Redhat Enterprise Linux for Power, big endian 7 Redhat Enterprise Linux for Power 9 7 Redhat Enterprise Linux for IBM z Systems - Extended Update Support 7.5 Redhat Enterprise Linux for IBM z Systems 7 Redhat Enterprise Linux for IBM System z (Structure A) 7 Redhat Enterprise Linux for ARM 64 7 Redhat Enterprise Linux EUS Compute Node 7.5 Redhat Enterprise Linux Desktop 7 Redhat Enterprise Linux 7 Redhat Enterprise Linux 6 + Trustix Secure Enterprise Linux 2.0 + Trustix Secure Linux 2.2 + Trustix Secure Linux 2.1 + Trustix Secure Linux 2.0 Redhat Enterprise Linux 5 Microsoft Windows Server 2012 R2 0 Microsoft Windows Server 2012 0 Microsoft Windows Server 2008 R2 for x64-based Systems SP1 Microsoft Windows 8.1 for x64-based Systems 0 Microsoft Windows 10 for x64-based Systems 0 Linux kernel 4.17.1 Linux kernel 4.16.11 Linux kernel 4.16.9 Linux kernel 4.16.6 Linux kernel 4.16.3 Linux kernel 4.15.14 Linux kernel 4.15.11 Linux kernel 4.15.9 Linux kernel 4.15.4 Linux kernel 4.14.31 Linux kernel 4.14.13 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.11 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.10 Linux kernel 4.14.6 Linux kernel 4.14.5 Linux kernel 4.14.1 Linux kernel 4.13.11 Linux kernel 4.13.10 Linux kernel 4.13.9 Linux kernel 4.13.8 Linux kernel 4.13.7 Linux kernel 4.13.6 Linux kernel 4.13.4 Linux kernel 4.13.3 Linux kernel 4.12.9 Linux kernel 4.12.4 Linux kernel 4.12.3 Linux kernel 4.12.2 Linux kernel 4.11.9 Linux kernel 4.11.5 Linux kernel 4.11.4 Linux kernel 4.11.3 Linux kernel 4.11.2 Linux kernel 4.11.1 Linux kernel 4.11 Linux kernel 4.10.15 Linux kernel 4.10.13 Linux kernel 4.10.12 Linux kernel 4.10.10 Linux kernel 4.10.6 Linux kernel 4.10.4 Linux kernel 4.10 Linux kernel 4.9.91 Linux kernel 4.9.74 Linux kernel 4.9.71 Linux kernel 4.9.68 Linux kernel 4.9.36 Linux kernel 4.9.13 Linux kernel 4.9.8 Linux kernel 4.9.4 Linux kernel 4.9.3 Linux kernel 4.9.9 Linux kernel 4.9.11 Linux kernel 4.9-rc8 Linux kernel 4.9-rc4 Linux kernel 4.9-rc3 Linux kernel 4.9-rc1 Linux kernel 4.9 Linux kernel 4.16-rc7 Linux kernel 4.16-rc6 Linux kernel 4.16-rc Linux kernel 4.16 Linux kernel 4.15.8 Linux kernel 4.15.7 Linux kernel 4.15-rc5 Linux kernel 4.15 Linux kernel 4.14.8 Linux kernel 4.14.7 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.4 Linux kernel 4.14.3 Linux kernel 4.14.2 Linux kernel 4.14.15 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.14 Linux kernel 4.14.0-rc1 Linux kernel 4.14-rc5 Linux kernel 4.14-rc1 Linux kernel 4.14 Linux kernel 4.13.5 Linux kernel 4.13.2 Linux kernel 4.13.1 Linux kernel 4.13-rc1 Linux kernel 4.13 Linux kernel 4.12.10 Linux kernel 4.12.1 Linux kernel 4.12-rc1 Linux kernel 4.12 Linux kernel 4.11.8 Linux kernel 4.11.7 Linux kernel 4.11-rc8 Linux kernel 4.11-rc7 Linux kernel 4.11-rc6 Linux kernel 4.11-rc5 Linux kernel 4.11-rc4 Linux kernel 4.11-rc3 Linux kernel 4.11-rc2 Linux kernel 4.11-rc1 Linux kernel 4.11 Linux kernel 4.10.9 Linux kernel 4.10.8 Linux kernel 4.10.7 Linux kernel 4.10.5 Linux kernel 4.10.3 Linux kernel 4.10.2 Linux kernel 4.10.11 Linux kernel 4.10.1 Linux kernel 4.10-rc8 Linux kernel 4.10-rc1 Intel Core Microprocessors 0 FreeBSD Freebsd 11.2 FreeBSD Freebsd 11.1 FreeBSD Freebsd 11.0 Citrix XenServer 7.5 Citrix XenServer 7.4 Citrix XenServer 7.3 Citrix XenServer 7.1 LTSR CU1 Citrix XenServer 7.1 Citrix XenServer 7.0
Not Vulnerable:

Intel Core Microprocessors CVE-2018-3665 Information Disclosure Vulnerability

Intel Core Microprocessors are prone to an information-disclosure vulnerability.

Attackers can exploit this issue to obtain sensitive information that may aid in further attacks.

Intel Core Microprocessors CVE-2018-3665 Information Disclosure Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Intel Core Microprocessors CVE-2018-3665 Information Disclosure Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Intel Core Microprocessors CVE-2018-3665 Information Disclosure Vulnerability

References:

• Intel Home Page (Intel)
  
• x86/fpu: Default eagerfpu=on on all CPUs (Linux)
  
• ADV180016 | Microsoft Guidance for Lazy FP State Restore (Microsoft)
  
• Bug 1585011 - (CVE-2018-3665) CVE-2018-3665 Kernel: FPU state information leakag (Redhat)
  
• Citrix XenServer Security Update for CVE-2018-3665 (Citrix)
  
• CVE-2018-3665 (Redhat)
  
• FreeBSD Security Advisory FreeBSD-SA-18:07.lazyfpu (Seclists.org)
  
• INTEL-SA-00145 Lazy FP state restore (Intel)
  
• RHSA-2018:1852 - Security Advisory (Redhat)
  
• Xen Security Advisory 267 (CVE-2018-3665) - Speculative register leakage (Seclists.org)