<div dir="auto">Es interesante (sobre todo por su practicidad) la solución que propone el CERT de CMU: reemplazar todas las CPUs<div dir="auto"><br></div><div dir="auto"><h3 style="margin:0px;padding:10px 0px 0px;border:0px;outline:0px;font-size:16px;vertical-align:baseline;background:rgb(255,255,255);color:rgb(51,51,51);font-family:arial,helvetica,tahoma,sans-serif">Solution</h3><table cellspacing="0" cellpadding="0" border="0" style="margin:0px;padding:10px 0px;border:0px;outline:0px;font-size:13px;vertical-align:baseline;background:rgb(255,255,255);border-collapse:collapse;border-spacing:0px;color:rgb(51,51,51);font-family:arial,helvetica,tahoma,sans-serif;line-height:18px!important"><tbody style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent"><tr style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent"><td style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent"><p style="margin:5px 0px;padding:5px 0px;border:0px;outline:0px;font-size:16.9px;vertical-align:baseline;background:transparent;line-height:18px;max-width:690px;word-wrap:break-word!important"><b style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent">Replace CPU hardware</b></p><p style="margin:5px 0px;padding:5px 0px;border:0px;outline:0px;font-size:16.9px;vertical-align:baseline;background:transparent;line-height:18px;max-width:690px;word-wrap:break-word!important">The underlying vulnerability is primarily caused by CPU implementation optimization choices. Fully removing the vulnerability requires replacing vulnerable CPU hardware.</p></td></tr></tbody></table><table cellspacing="0" cellpadding="0" border="0" style="margin:0px;padding:15px 0px 10px;border:0px;outline:0px;font-size:13px;vertical-align:baseline;background:rgb(255,255,255);border-collapse:collapse;border-spacing:0px;color:rgb(51,51,51);font-family:arial,helvetica,tahoma,sans-serif;line-height:18px!important"><tbody style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent"><tr style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent"><td style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent"><p style="margin:5px 0px;padding:5px 0px;border:0px;outline:0px;font-size:16.9px;vertical-align:baseline;background:transparent;line-height:18px;max-width:690px;word-wrap:break-word!important"><b style="margin:0px;padding:0px;border:0px;outline:0px;vertical-align:baseline;background:transparent">Apply updates</b><br><br>Operating system updates mitigate the underlying hardware vulnerability.</p></td></tr></tbody></table><br><br><div data-smartmail="gmail_signature" dir="auto">Mariano Absatz <br><a href="http://www.clueless.com.ar">www.clueless.com.ar</a><br>Enviado desde mi áifon</div></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Jan 4, 2018 12:08, "Lucimara Desiderá" <<a href="mailto:lucimara@cert.br">lucimara@cert.br</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Mais detalhes:<br>
<br>
<a href="http://www.kb.cert.org/vuls/id/584653" rel="noreferrer" target="_blank">http://www.kb.cert.org/vuls/<wbr>id/584653</a><br>
<br>
<a href="https://googleprojectzero.blogspot.nl/2018/01/reading-privileged-memory-with-side.html" rel="noreferrer" target="_blank">https://googleprojectzero.<wbr>blogspot.nl/2018/01/reading-<wbr>privileged-memory-with-side.<wbr>html</a><br>
<br>
<br>
<a href="https://meltdownattack.com/" rel="noreferrer" target="_blank">https://meltdownattack.com/</a><br>
<a href="https://meltdownattack.com/meltdown.pdf" rel="noreferrer" target="_blank">https://meltdownattack.com/<wbr>meltdown.pdf</a><br>
<br>
<br>
<a href="https://spectreattack.com/" rel="noreferrer" target="_blank">https://spectreattack.com/</a><br>
<a href="https://spectreattack.com/spectre.pdf" rel="noreferrer" target="_blank">https://spectreattack.com/<wbr>spectre.pdf</a><br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
On 01/03/18 18:08, Ing. Paul F. Bernal B., MSc. wrote:<br>
> PSI/FYI<br>
><br>
> <a href="https://csirt.cedia.org.ec/2018/01/falla-de-seguridad-en-procesadores-intel/" rel="noreferrer" target="_blank">https://csirt.cedia.org.ec/<wbr>2018/01/falla-de-seguridad-en-<wbr>procesadores-intel/</a><br>
><br>
><br>
><br>
> ______________________________<wbr>_________________<br>
> Seguridad mailing list<br>
> <a href="mailto:Seguridad@lacnic.net">Seguridad@lacnic.net</a><br>
> <a href="https://mail.lacnic.net/mailman/listinfo/seguridad" rel="noreferrer" target="_blank">https://mail.lacnic.net/<wbr>mailman/listinfo/seguridad</a><br>
><br>
<br>
<br>______________________________<wbr>_________________<br>
Seguridad mailing list<br>
<a href="mailto:Seguridad@lacnic.net">Seguridad@lacnic.net</a><br>
<a href="https://mail.lacnic.net/mailman/listinfo/seguridad" rel="noreferrer" target="_blank">https://mail.lacnic.net/<wbr>mailman/listinfo/seguridad</a><br>
<br></blockquote></div></div>