Achieve new levels of security and standards compliance
Now available, the Klocwork Spectre variant 1 checker detects potential Spectre vulnerabilities in your code.
What is Spectre: Spectre variant 1 exploits a CPU optimisation technique, known as speculative execution, which may open the door to your critical data.
What to do: You can detect and resolve vulnerable code patterns using static code analysis. Intel recommends applying LFENCE instructions to vulnerable code sections to stop speculative execution locally.
How to fix: The Klocwork Spectre variant 1 checker flags any possible instances of tainted data and identifies code patterns that are suspect under speculative execution. This solves the hardest part of remediation: Finding where the vulnerabilities exist. You can then focus on fixing them.