[ Date Prev ][ Date Next ][ Thread Prev ][ Thread Next ][ Date Index ][ Thread Index ]

CVE ID speculation 

We've talked about CVE assignment and potential information
leakage/speculation.  Just noting an active example of it happening.
I'm not sure there's much we can or should do about it, or that it's
worth the investment over other efforts CVE could be working on, but
it's part of the ID assignment service discussion at least.

https://newsroom.intel.com/articles/addressing-questions-regarding-additional-security-issues/

https://www.heise.de/ct/artikel/Exclusive-Spectre-NG-Multiple-new-Intel-CPU-flaws-revealed-several-serious-4040648.html

 - Art
Page Last Updated or Reviewed: May 10, 2018