-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ******************************************************************** Title: Microsoft Security Advisory Notification Issued: April 10, 2018 ******************************************************************** Security Advisories Released or Updated on April 10 =================================================================== * Microsoft Security Advisory ADV180002 - Title: Guidance to mitigate speculative execution side-channel vulnerabilities - https:https://portal.msrc.microsoft.com/en-US/security-guidance/ advisory/ADV180002 - Reason for Revision: The following updates have been made: 1. Updated FAQ#10 to provide additional links for more information about updating an AMD-based device. 2. Added FAQ #15 to announce that security update 4093112 for Windows 10 Version 1709 provides addtional mitigations for AMD processors for CVE-2017-5715, and to provide further information about these mitigations. 3. Added FAQ #16 to announce that AMD has started to release microcode updates around Spectre variant 2 (CVE 2017-5715 Branch Target Injection) for newer CPU platforms. - Originally posted: January 3, 2018 - Updated: April 10, 2018 - Version: 16.0 Other Information ================= Recognize and avoid fraudulent email to Microsoft customers: ============================================================= If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email. The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at . ******************************************************************** THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. ******************************************************************** Microsoft respects your privacy. Please read our online Privacy Statement at . If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe: . These settings will not affect any newsletters you've requested or any mandatory service communications that are considered part of certain Microsoft services. For legal Information, see: . This newsletter was sent by: Microsoft Corporation 1 Microsoft Way Redmond, Washington, USA 98052 -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEELe29pj1Ogz+2MnKbEEiO2re18ugFAlrM4y0ACgkQEEiO2re1 8uhsshAAu+hgLVUJh8uUl5JY1iLXotfRZdh3XuiM3wwz+KqwSuckk765ml9/h1JR ogkCbKqoqTya3GZJq4yuZn3j/hJJpiimb1zjO7uw/1Gs71agVHoz//TRfZUKEzdJ E96x6aI+n9jjpCsgjEHdGlPyMH3I+lBlKGKH7OejgyNtZqNkpy8JLcUjC6w04Ch7 8ump5+0KYNfbLEGylT+cdCh4+rBRHJ0qxc3454PuvAp2BfrnleQLiAVxb4J41MOJ /eBcdZFM1Hl0Ozes4agQ0zguU2toJ7ssQB8GUvhZhBQiviNXMFVsUrr+Sqx9ITX6 Dh8yYwaIrvmgYJbIGIS0TZBPDmk5+XMv7CGwftL8uHsut8idtIfyz9ke/EGDukDd OJx7GO5tYxCnohfqqwVVXsU0PRp3LRcVpdSvUDgVG7TJDpQwrkOZkVSRX+3lQbK3 dTBOC/bJ8UaFeT61wdWWwEexJhLheBZDMy+3PrnpKGGRs2YAq9rHhJGIedr9Umgu PP6eYYW9cQVAB6Vu3XRwjCTUj+wADpOBA0eDvg6GEhhDpR/tnvLp31hAmRFJ1Bg4 Pg0GeKxJNTpbflxfEssCLjUTrtNsLh09oCSIqSoEdyxgY19WoxcyLEHS6jvCV6tv i6ZLYPFmlhoOdpemy+cEDTYD1mmbZLvRJKBOOVc2TBGAGPrgVBw= =ml9a -----END PGP SIGNATURE-----