Transient execution CPU vulnerability
Hardware security vulnerabilities in Intel CPU architectures
The 8th generation Coffee Lake architecture in this table also applies to a wide range of previously released Intel CPUs, not limited to the architectures based on Intel Core, Pentium 4 and Intel Atom starting with Silvermont.[1][2]
| Vulnerability | N | CVE | Description | Affected CPU architectures and workarounds | |||||
|---|---|---|---|---|---|---|---|---|---|
| Intel | AMD | ARM | |||||||
| Ice Lake | Cascade Lake | Whiskey Lake,
Coffee Lake (9th gen)[3] |
Coffee Lake (8th gen)* | ||||||
| Spectre | 1 | 2017-5753 | Bounds Check Bypass | OS/VMM | |||||
| Spectre | 2 | 2017-5715 | Branch Target Injection | Hardware + OS | Firmware + OS | Firmware + OS | |||
| Meltdown | 3 | 2017-5754 | Rogue Data Cache Load | Not affected | Firmware | ||||
| Spectre-NG | 3a | 2018-3640 | Rogue System Register Read | Not affected[4] | Firmware | ||||
| Spectre-NG | 4 | 2018-3639 | Speculative Store Bypass | Hardware + OS/VMM[4] | Firmware + OS | ||||
| Foreshadow | 5 | 2018-3615 | L1 Terminal Fault | Not affected | Firmware | ||||
| Spectre-NG | 2018-3665 | Lazy FP State Restore | |||||||
| Spectre-NG | 1.1 | 2018-3693 | Bounds Check Bypass Store | ||||||
| Foreshadow-NG | 2018-3620 | ||||||||
| Foreshadow-NG | 2018-3646 | ||||||||
| ZombieLoad | 2018-12130 | Microarchitectural Fill Buffer Data Sampling | |||||||
| RIDL | 2018-12127 |
|
|||||||
| Fallout | 2018-12126 | Microarchitectural Store Buffer Data Sampling | |||||||
* Hardware mitigations impose close to zero performance loss, while firmware and/or OS mitigations might incur quite a significant performance loss (depending on workload).
- ^ "INTEL-SA-00088". Intel. Retrieved 2018-09-01.
- ^ "INTEL-SA-00115". Intel. Retrieved 2018-09-01.
- ^ online, heise. "Intel Core i9-9900K mit 8 Kernen und 5 GHz für Gamer". heise online (in German). Retrieved 2018-10-09.
- ^ a b "Engineering New Protections Into Hardware". Intel. Retrieved 2019-04-28.