At the end of May 2019, it became known that information security specialists discovered a new class of vulnerabilities in Intel processors: Microarchitectural Data Sampling (MDS). As well as Specter and Meltdown vulnerabilities, new bugs are associated with a proactive (or speculative) command execution mechanism.
The researchers identified four vulnerabilities and divided them into three groups: RIDL, Fallout and ZombieLoad. All these bugs allow an attacker to read data from places to which he should not have access (OS kernel, processes, Software Guard eXtensions enclaves), and then steal passwords, cryptographic keys and other personal data.
Now, to fix these problems in older versions of Windows 10 and Windows Server, Microsoft has prepared the following updates:
Quick Links
Legal Stuff