New Microsoft update to fix flaw in ‘Meltdown’ patch
Microsoft has issued a new security patch to fix the earlier security update that was released in January to tackle “Meltdown” vulnerability found in microchips from Intel and other chip-makers. The flaw “CVE-2018-1038” was found in the first patch that was issued to protect Windows 7 x64 or Windows Server 2008 R2 x64 systems from the “Meltdown” vulnerability.
Security researchers disclosed two flaws – “Meltdown” and “Spectre” — on January 3 that affected nearly every modern computing device containing chips from Intel, AMD and ARM Holdings. “This update addresses an elevation of privilege vulnerability in the Windows kernel in the 64-Bit (x64) version of Windows. This vulnerability is documented in CVE-2018-1038,” Microsoft said on its support page on Friday.
“Users must apply this update to be fully protected against this vulnerability if their computers were updated in or after January 2018 by applying any of the following updates,” the company added. After chip-maker Intel confirmed a potential security flaw in its chips, Microsoft issued emergency updates to supported versions of Windows in January. Following the news of the bugs getting out, all major tech players such as Microsoft, Google, Apple, including Intel, released security patches to help protect users from potential data theft.