CPU hardware vulnerable to side-channel attacks(CVE-2018-3639, CVE-2018-3640)
These vulnerabilities, "CVE-2018-3639, CVE-2018-3640", are derivative of side channel methods previously disclosed in January, 2018.
Fujitsu is working to distribute patches for all affected products that are currently supported.
For more detailed information please refer to the Intel web site:
https://www.intel.com/content/www/us/en/architecture-and-technology/facts-about-side-channel-analysis-and-intel-products.html
The following list contains links to the our products information about this vulnerability. Other products are under investigation. This list will be updated as information becomes available.
- PC
- Japan (Fujitsu Japan)
http://www.fmworld.net/biz/common/info/201805sca/ (Japanese) - Europe/Middle East/India/Africa (Fujitsu Technology Solutions)
https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PMD-IS-2018-052100-Security-Advisory.asp - Asia Pacific (Fujitsu PC Asia Pacific Ltd.)
UNDER CONSTRUCTION - Australia / New Zealand (Fujitsu Australia Limited)
UNDER CONSTRUCTION
- Japan (Fujitsu Japan)
- x86 Server
- Japan (Fujitsu Japan)
http://jp.fujitsu.com/platform/server/primergy/note/page35.html (Japanese) - Europe/Middle East/India/Africa (Fujitsu Technology Solutions)
https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PMD-IS-2018-052100-Security-Advisory.asp - Asia Pacific / South America (Fujitsu Japan)
UNDER CONSTRUCTION
- Japan (Fujitsu Japan)
- UNIX Servers
- Storage
- ETERNUS DX, ETERNUS AF and ETERNUS LT series are not affected by this security issue, because no external program can be executed on them.
Revision history
- September 19th, 2018:Updated UNIX Servers information
- July 20th, 2018:Added UNIX Servers, Storage information
- June 14th, 2018:Added PC US / Canada (Fujitsu America Inc.) information
- May 25th, 2018:Updated x86 Server Japan (Fujitsu Japan) information
- May 23rd, 2018:Updated PC Japan (Fujitsu Japan) information
- May 22nd, 2018: Initial release