Hi Symantec,
Microsoft has just released guidance on the KAISER - KTPI vulnerabilities regarding processors (widely reported as an Intel bug) (CVE-2017-5753, CVE-2017-5715, CVE-2017-5754).
Microsoft's guidance states to check with your AV vendor before the upcoming patch tuesday on January 9th, as the patch will not apply unless the AV vendor has set the following registry key to indicate compatibility with the update:
Key="HKEY_LOCAL_MACHINE"Subkey="SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat"
Value Name="cadca5fe-87d3-4b96-b7fb-a231484277cc"
Type="REG_DWORD”
Data="0x00000000”
I have checked endpoints running the latest SEP 14 RU1 and can confirm on Windows 10 this registry key is not present.
A few questions:
Is Symantec going to release guidance on this before the Patch Tuesday date?
Is SEP compatible with the new Kernel patches?
I don't see at this point how Symantec is going to push out the registry key update to customers on older versions, so it may be that this key will need to be set manually if people want to apply the security update.
Microsoft information: https://support.microsoft.com/en-us/help/4056892/windows-10-update-kb4056892 (only Windows 10 at the time of posting).
I'll follow this up with professional support as well.