Microsoft Working on a Fix for Windows 10 Meltdown Patch Bypass

[steven36]

Microsoft's patches for the Meltdown vulnerability have had a fatal flaw all these past months, according to Alex Ionescu, a security researcher with cyber-security firm Crowdstrike

 

 

Only patches for Windows 10 versions were affected, the researcher wrote today in a tweet. Microsoft quietly fixed the issue on Windows 10 Redstone 4 (v1803), also known as the April 2018 Update, released on Monday.

 

"Welp, it turns out the Meltdown patches for Windows 10 had a fatal flaw: calling NtCallEnclave returned back to user space with the full kernel page table directory, completely undermining the mitigation," Ionescu wrote.

 

 

Quote

 

Welp, it turns out the #Meltdown patches for Windows 10 had a fatal flaw: calling NtCallEnclave returned back to user space with the full kernel page table directory, completely undermining the mitigation. This is now patched on RS4 but not earlier builds -- no backport?? pic.twitter.com/VIit6hmYK0

— Alex Ionescu (@aionescu) May 2, 2018

 

Backported patches are on the way

"We are aware and are working to provide customers with an update," a Microsoft spokesperson told Bleeping Computer today in an email.

 

It may be that if Microsoft doesn't bundle these fixes in an out-of-band update, they will most likely arrive in Microsoft's May 2018 Patch Tuesday, but this is only our speculation.

 

Microsoft released its Meltdown and Spectre patches on January 4, a day after security researchers disclosed the two flaws, vulnerabilities that allow attackers to retrieve data from protected areas of modern CPUs.

 

The Redmond-based OS maker has had a hard time patching the two flaws, and the company recently issued additional security updates to fix the original Spectre mitigations, and also deliver Intel CPU microcode updates, as a favor to Intel.

 

Source

[digimon]

https://www.scmagazineuk.com/ghosts-in-the-machine-researchers-find-8-more-spectre-flaws-in-cpu-chips/article/764245/

 

its just the beggining this spectre meltdown etc will be around untill hardware fixes are in place to mant ways to exploit it

[tao]

Microsoft Fixes “Fatal Flaw” in Windows 10 Fall Creators Update Meltdown Patch