Share this article

Latest news

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Lazy FP State Restore security vulnerability affects Intel CPUs

2 min. read

Published onJune 16, 2018

published onJune 16, 2018

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Intel CPUs have been recently hit by a newflawcalledLazy FP State Restoreand the tech company already confirmed the new bug. All vendors are in a hurry to roll outsecurityupdates to enhance CPUsecurityfor their customers. Microsoft is one of the tech firms that provided advice for dealing with the bug in a recentadvisory. The company confirmed thatsecuritypatches are currently being developed and they will be rolled out shortly.

Microsoft will release the fix on July Patch Tuesday

It seems that Microsoft will not send out these patches when they are ready, and the company is just waiting for the nextPatch Tuesdayto deliver them. This is scheduled for July 10. The company explains in its advisory that the bug is enabled by default in Windows and unfortunately thisflawcannot be disabled. Thevulnerabilityalso affects the kernel, virtual machines, and processes. The good news is that users running virtual machines in Microsoft Azure are protected.

Here’s how the flaw works

In its advisory, Microsoft explains that a hacker is able to cause data stored in the Floating Point, MMX and SSE register state to be leaked acrosssecurityboundaries on Intel Core family CPUs via a speculative execution. In order toexploitthisflaw, the hacker must be able to execute code locally on a system. This is quite similar to the other speculative execution vulnerabilities.

Microsoft continues and explains that the data leaked in the register state depends on the code execution and on whether any code stores sensitive data in the FP register state.

Recommended actions

The tech giant also provides steps that have to be taken in order to prevent disaster:

Head over to Microsoft’s advisory and read all the details on the Lazy FP State Restoreflaw.

RELATED STORIES TO CHECK OUT:

More about the topics:microsoft

Radu Tyrsina

Radu Tyrsina has been a Windows fan ever since he got his first PC, a Pentium III (a monster at that time).

For most of the kids of his age, the Internet was an amazing way to play and communicate with others, but he was deeply impressed by the flow of information and how easily you can find anything on the web.

Prior to founding Windows Report, this particular curiosity about digital content enabled him to grow a number of sites that helped hundreds of millions reach faster the answer they’re looking for.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Δ

Radu Tyrsina