In light of the recent news regarding AMD, Arm and Intel processor security vulnerabilities, we have created a page on Cypress.com with the following statement to address concerns from our customers and/or partners: http://www.cypress.com/update-recent-processor-security-exploits.
On Wednesday, January 3, 2018, Google’s Project Zero posted details of their findings on means to exploit security vulnerabilities of processors from AMD, Arm and Intel, primarily. These findings have been reported as the Spectre and Meltdown exploits which take advantage of cache pre-fetching support in the affected processors.
While many Cypress products utilize processor cores licensed from Arm, after a thorough review with Arm, they have confirmed that no Cypress products use the subset of Arm processors which are susceptible to the Spectre and Meltdown exploits described in the Project Zero announcement.
Cypress is constantly monitoring and assessing vulnerabilities within our products. For more information regarding Arm cores and the impact of the Project Zero findings, please see the following links from Arm.