ISC Releases Security Advisories for DHCP, BIND

Original release date: March 01, 2018

The Internet Systems Consortium (ISC) has released updates or workarounds that address vulnerabilities in versions of ISC Dynamic Host Configuration Protocol (DHCP) and Berkeley Internet Name Domain (BIND). A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition.

NCCIC/US-CERT encourages users and administrators to review ISC Knowledge Base Articles AA-01562 and AA-01565 and apply the necessary updates or workarounds.


This product is provided subject to this Notification and this Privacy & Use policy.


ISC Releases Security Advisories for DHCP, BIND

Original release date: March 01, 2018

The Internet Systems Consortium (ISC) has released updates or workarounds that address vulnerabilities in versions of ISC Dynamic Host Configuration Protocol (DHCP) and Berkeley Internet Name Domain (BIND). A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition.

NCCIC/US-CERT encourages users and administrators to review ISC Knowledge Base Articles AA-01562 and AA-01565 and apply the necessary updates or workarounds.


This product is provided subject to this Notification and this Privacy & Use policy.


Intel’s latest set of Spectre microcode fixes is coming to a Windows update

Intel Skylake die shot. (credit: Intel)

Windows users running the latest version of Windows 10 on recent Intel processors will soon be receiving Intel’s microcode updates to address the Spectre variant 2 attack.

Earlier this year, attacks that exploit the processor’s speculative execution were published with the names Meltdown and Spectre, prompting a reaction from hardware and software companies. Intel released microcode updates for its processors to provide operating systems with greater control over certain aspects of this speculative execution; however, the company’s initial releases were found to cause problems.

Intel has since fixed the microcode bugs, but until this point Microsoft has said that Windows users should turn to their system vendors to actually get the new microcode.

Read 5 remaining paragraphs | Comments

Intel’s latest set of Spectre microcode fixes is coming to a Windows update

Intel Skylake die shot. (credit: Intel)

Windows users running the latest version of Windows 10 on recent Intel processors will soon be receiving Intel's microcode updates to address the Spectre variant 2 attack.

Earlier this year, attacks that exploit the processor's speculative execution were published with the names Meltdown and Spectre, prompting a reaction from hardware and software companies. Intel released microcode updates for its processors to provide operating systems with greater control over certain aspects of this speculative execution; however, the company's initial releases were found to cause problems.

Intel has since fixed the microcode bugs, but until this point Microsoft has said that Windows users should turn to their system vendors to actually get the new microcode.

Read 5 remaining paragraphs | Comments