Security Researchers Discover Two New Variants of the Spectre Vulnerability

In Summary :

Security researchers from Google and Microsoft have publicly disclosed today a third and fourth variant of the industry-wide issue known as the Spectre vulnerability, which could let attackers gain access to sensitive information on vulnerable systems. Dubbed Spectre Variant 3a and Spectre Variant 4, the two security vulnerabilities are identified as Rogue System Register Read (CVE-2018-3640) and Speculative Store Bypass (CVE-2018-3639). While Spectre Variant 3a lets a local attacker to obtain sensitive information by reading system parameters via side-channel analysis, the Spectre Variant 4 vulnerability lets unprivileged attackers read older memory values from memory or the CPU stack. [...]

kindly refer the following link as follow up :
https://goo.gl/nkcmEP