Provides protections against a new speculative execution side-channel vulnerability known as L1 Terminal Fault (L1TF) that affects Intel® Core® processors and Intel® Xeon® processors (CVE-2018-3620 and CVE-2018-3646). Make sure previous OS protections against Spectre Variant 2 and Meltdown vulnerabilities are enabled using the registry settings outlined in the Windows Server guidance KB article. (These registry settings are disabled by default for Windows Server OS editions.)
Provides protections against an additional vulnerability involving side-channel speculative execution known as Lazy Floating Point (FP) State Restore (CVE-2018-3665) for 32-Bit (x86) versions of Windows.
For more information about the resolved security vulnerabilities, see the Security Update Guide.

Known issues in this update

Microsoft is not currently aware of any issues with this update.

How to get this update

This update is now available for installation through WSUS. To get the standalone package for this update, go to the Microsoft Update Catalog website.File informationFor a list of the files that are provided in this update, download the file information for update 4343896.

mskb 14

nessus 48

kaspersky 2

openvas 26

cve 8

prion 8

cvelist 8

nvd 8

freebsd 1

fedora 2

redhatcve 2

osv 2

redhat 13

debian 4

freebsd_advisory 1

ibm 6

xen 1

ubuntu 5

mageia 4

thn 1

f5 1

intel 1

cloudfoundry 2

oraclelinux 2

cert 1

msrc 2

threatpost 1

lenovo 2

cisco 1

mscve 8

checkpoint_advisories 2

symantec 7

zdi 3

amazon 2

mskb

August 14, 2018—KB4343888 (Security-only update)

2018-08-14 07:00:00

August 14, 2018—KB4343899 (Security-only update)

2018-08-14 07:00:00

August 14, 2018—KB4343901 (Monthly Rollup)

2018-08-14 07:00:00

nessus

Security Updates for Windows Server 2008 (August 2018) (Foreshadow)

2018-08-14 00:00:00

KB4343896: Windows Server 2012 August 2018 Security Update (Foreshadow)

2018-08-14 00:00:00

KB4343899: Windows 7 and Windows Server 2008 R2 August 2018 Security Update (Foreshadow)

2018-08-14 00:00:00

kaspersky

KLA11789 Multiple vulnerabilities in Microsoft Products (ESU)

2018-08-14 00:00:00

KLA11309 Multiple vulnerabilities in Microsoft Windows

2018-08-14 00:00:00

openvas

Microsoft Windows Multiple Vulnerabilities (KB4343898)

2018-08-15 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4343900)

2018-08-15 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4343892)

2018-08-15 00:00:00

cve

CVE-2018-8348

2018-08-15 17:29:05

CVE-2018-8341

2018-08-15 17:29:04

CVE-2018-8398

2018-08-15 17:29:09

prion

Information disclosure

2018-08-15 17:29:00

Information disclosure

2018-08-15 17:29:00

Information disclosure

2018-08-15 17:29:00

cvelist

CVE-2018-8348

2018-08-15 17:00:00

CVE-2018-8341

2018-08-15 17:00:00

CVE-2018-8398

2018-08-15 17:00:00

nvd

CVE-2018-8348

2018-08-15 17:29:05

CVE-2018-8341

2018-08-15 17:29:04

CVE-2018-8394

2018-08-15 17:29:08

freebsd

FreeBSD -- L1 Terminal Fault (L1TF) Kernel Information Disclosure

2018-08-14 00:00:00

fedora

[SECURITY] Fedora 28 Update: kernel-headers-4.17.14-3.fc28

2018-08-16 08:08:45

[SECURITY] Fedora 27 Update: kernel-headers-4.17.14-3.fc27

2018-08-16 07:24:56

redhatcve

CVE-2018-3646

2021-01-24 22:39:20

CVE-2018-3620

2021-03-20 21:41:50

osv

linux-4.9 - security update

2018-08-28 00:00:00

linux - security update

2018-08-20 00:00:00

redhat

(RHSA-2018:2404) Important: rhev-hypervisor7 security update

2018-08-15 15:14:04

(RHSA-2018:2389) Important: kernel security update

2018-08-14 18:50:42

(RHSA-2018:2602) Important: kernel security update

2018-08-29 18:04:28

debian

[SECURITY] [DLA 1481-1] linux-4.9 security update

2018-08-28 17:10:51

[SECURITY] [DSA 4279-1] linux security update

2018-08-20 11:44:32

[SECURITY] [DSA 4274-1] xen security update

2018-08-16 20:47:43

freebsd_advisory

FreeBSD-SA-18:09.l1tf

2018-08-14 00:00:00

ibm

Security Bulletin: L1TF - L1 Terminal Fault Attack affect IBM Netezza Host Management

2019-10-18 03:36:34

Security Bulletin: IBM Security Guardium is affected by a Foreshadow Spectre Variant vulnerability

2019-02-07 19:55:01

Security Bulletin: Multiple Security Vulnerabilities affect IBM® Cloud Private Cloud Foundry (CVE-2018-3646, CVE-2018-3615, CVE-2018-3620)

2018-11-19 15:40:01

xen

L1 Terminal Fault speculative side channel

2018-08-14 17:15:00

ubuntu

Linux kernel vulnerabilities

2018-11-15 00:00:00

Linux kernel vulnerabilities

2018-08-14 00:00:00

Linux kernel (HWE) vulnerabilities

2018-08-14 00:00:00

mageia

Updated kernel-linus packages fix security vulnerabilities

2018-08-19 14:24:54

Updated kernel packages fix security vulnerabilities

2018-08-19 14:24:54

Updated microcode packages fix security vulnerabilities

2018-08-19 14:24:54

thn

Foreshadow Attacks — 3 New Intel CPU Side-Channel Flaws Discovered

2018-08-15 07:40:00

K70675920 : August 2018 Intel security vulnerability announcement

2018-08-15 00:00:00

intel

Q3 2018 Speculative Execution Side Channel Update

2021-05-11 00:00:00

cloudfoundry

USN-3740-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry

2018-09-11 00:00:00

USN-3741-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

2018-08-17 00:00:00

oraclelinux

Unbreakable Enterprise kernel security update

2018-09-06 00:00:00

Unbreakable Enterprise kernel security update

2018-08-14 00:00:00

cert

Intel processors are vulnerable to a speculative execution side-channel attack called L1 Terminal Fault (L1TF)

2018-08-15 00:00:00

msrc

Analysis and mitigation of L1 Terminal Fault (L1TF)

2018-08-13 07:00:00

Analysis and mitigation of L1 Terminal Fault (L1TF)

2018-08-13 07:00:00

threatpost

Intel CPUs Undermined By Fresh Speculative Execution Flaws

2018-08-14 19:24:34

lenovo

L1 Terminal Fault Side Channel Vulnerabilities - Lenovo Support NL

2018-08-16 14:27:00

L1 Terminal Fault Side Channel Vulnerabilities - US

2018-08-16 14:27:00

cisco

CPU Side-Channel Information Disclosure Vulnerabilities: August 2018

2018-08-14 17:00:00

mscve

Windows Kernel Information Disclosure Vulnerability

2018-08-14 07:00:00

Windows NDIS Elevation of Privilege Vulnerability

2018-08-14 07:00:00

Microsoft Graphics Remote Code Execution Vulnerability

2018-08-14 07:00:00

checkpoint_advisories

Microsoft Graphics Remote Code Execution (CVE-2018-8344)

2018-08-14 00:00:00

Microsoft LNK Remote Code Execution (CVE-2018-8345)

2018-08-14 00:00:00

symantec

Microsoft Windows Graphics Component CVE-2018-8344 Remote Code Execution Vulnerability

2018-08-14 00:00:00

Microsoft Windows GDI Component CVE-2018-8398 Information Disclosure Vulnerability

2018-08-14 00:00:00

Microsoft Windows Kernel CVE-2018-8341 Local Information Disclosure Vulnerability

2018-08-14 00:00:00

zdi

Microsoft Windows Font Subsetting Integer Overflow Remote Code Execution Vulnerability

2018-08-14 00:00:00

Microsoft Windows EMF File Out-Of-Bounds Read Information Disclosure Vulnerability

2018-08-30 00:00:00

Microsoft Windows LNK File Uninitialized Pointer Remote Code Execution Vulnerability

2018-08-14 00:00:00

amazon

Critical: kernel

2018-08-10 22:53:00

Critical: kernel

2018-08-10 20:26:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.9 High

AI Score

Confidence

Low

0.329 Low

EPSS

Percentile

97.1%

JSON

Related for KB4343896