A short wrapup to the latest Intel security leaks for VMware Administrators: CVE-2018-3639 aka Speculative Store Bypass (SSB), Variant 4 CVE-2018-3640 aka Rogue System Register Read (RSRE), Variant 3a. Once again we have to patch the whole stack: Update vCenter CPU Microcode (BIOS Update) VMware ESXi Hypervisor Patch Check if the new CPU flags are mapped to a new VM All VMs – Shutdown and start (reboot is not enough!) Update Guest OS Get some hints about EVC-Mode and how … Continue reading Spectre NG (CVE-2018-3639 and CVE-2018-3640)