topic A new vulnerability affects ALL Intel CPU's in Industry News

A new vulnerability affects ALL Intel CPU's

Flyslinger2 — Wed, 07 Aug 2019 15:08:43 GMT

I doubt this is the last but Intel sure has their hands full.

It's also interesting how this was under the radar. Both MS and Redhat gave Intel the heads up and it was quietly patched by MS. My Redhat patching feed has been going of like crazy this last couple of days.

Re: A new vulnerability affects ALL Intel CPU's

AppDefects — Wed, 07 Aug 2019 19:12:01 GMT

Another reason to buy AMD...

Re: A new vulnerability affects ALL Intel CPU's

Caute_cautim — Wed, 07 Aug 2019 20:41:47 GMT

But look at it from a different angle: SWAPGS

https://www.darkreading.com/threat-intelligence/new-speculative-execution-vulnerability-gives-cisos-a-new-reason-to-lose-sleep/d/d-id/1335462?_mc=NL_DR_EDT_DR_daily_20190807&cid=NL_DR_EDT_DR_daily_20190807&elq_mid=92299&elq_cid=23392365

Then realise the potential issues.

It is stated "SWAPGS is dangerous because it bypasses hardware-based protection and is undetectable by normal security packages."

Interesting indeed even if it is speculative.

Regards

Caute_cautim

Re: A new vulnerability affects ALL Intel CPU's

Flyslinger2 — Wed, 07 Aug 2019 21:48:17 GMT

AMD has it also.

Re: A new vulnerability affects ALL Intel CPU's

Shannon — Thu, 08 Aug 2019 11:37:14 GMT

This DigitalTrends article talks about reducing the risk of CPU attacks which exploit speculative execution, through the use of a 'Security Core.'

I don't know how much truth there is in that, or if we'll see any of the major players completely adopt it.

For now, I'll just have to take the usual steps of keeping my OS and apps up-to-date, upgrading my firmware, etc. --- there's not much else I can do...