all InfoSec news
VU#488902: CPU hardware utilizing speculative execution may be vulnerable to speculative race conditions
CERT Recently Published Vulnerability Notes kb.cert.org
Overview
A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures supporting speculative execution has been discovered. CPU hardware utilizing speculative execution that are vulnerable to Spectre v1 are likely affected. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the speculative executable code paths. Security researchers have labeled this variant of the Spectre v1 vulnerability “GhostRace", for ease of communication.
Description
Speculative execution is an optimization technique where …
architectures attacker can conditions cpu data exploit hardware may race race condition race conditions spectre speculative execution unauthenticated vulnerability vulnerable