A recently disclosed vulnerability affects many modern processors and operating systems including Intel, AMD, and ARM. Referred to as “speculative execution side-channel attacks,” this serious vulnerability can allow attackers to read privileged data across trust boundaries.
Microsoft Azure platforms are fully protected and mitigation has already been deployed. However, customers managing their own VMs and virtual environments in Azure need to be aware that actions may need to be performed.
Microsoft has supplied guidance for this scenario:
Customers that are running untrusted code within their VM need to take action to protect against these vulnerabilities by reading below for additional guidance on all speculative execution side-channel vulnerabilities (Microsoft Advisories ADV 180002, 180018, and 190013).