Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
Backforce One Plus Gaming Chair review
ASUS GeForce RTX 3080 Noctua OC review
AMD Ryzen 5 5600 review
PowerColor RX 6650 XT Hellhound White review
FSP Hydro PTM Pro (1200W PSU) review
ASUS ROG Radeon RX 6750 XT STRIX review
AMD FidelityFX Super Resolution 2.0 - preview
Sapphire Radeon RX 6650 XT Nitro+ review
Sapphire Radeon RX 6950 XT Sapphire Nitro+ Pure review
Sapphire Radeon RX 6750 XT Nitro+ review

New Downloads
Corsair Utility Engine Download (iCUE) Download v4.24.193
Intel HD graphics Driver Download Version: 30.0.101.1994
GeForce 512.95 WHQL driver download
AMD Radeon Software Adrenalin 22.5.2 driver download
AIDA64 Download Version 6.70
FurMark Download v1.30
Display Driver Uninstaller Download version 18.0.5.1
Download Samsung Magician v7.1.1.820
Intel ARC graphics Driver Download Version: 30.0.101.1732
HWiNFO Download v7.24


New Forum Topics
NVIDIA GeForce 512.95 WHQL driver download & Discussion A 500Hz refresh rate NVIDIA G-Sync compatible gaming LCD is in the works The AMD Ryzen All In One Thread /Overclocking/Memory Speeds & Timings/Tweaking/Cooling Part 2 MSI will debut the MEG 342C based on a QD-OLED (3440x1440) display AMD reaffirms that the 5.5+ GHz of the Ryzen 7000 in the presentations was achieved without overclocking Info Zone - gEngines, Ray Tracing, DLSS, DLAA, TSR, FSR, XeSS, DLDSR etc. Are we ever going to get a new NVIDIA CONTROL PANEL ??? [3rd-Party Driver] Amernime Zone Radeon Insight 22.5.1 WHQL Driver Pack (Released) NVIDIA Re-Enables LHR On Its Graphics Cards With New Driver Error 1603 (Aka the Middle Finger)




Guru3D.com » News » Crosstalk vulnerability in Intel processors allows information to be extracted from other cores

Crosstalk vulnerability in Intel processors allows information to be extracted from other cores

by Hilbert Hagedoorn on: 06/11/2020 09:06 AM | source: vusec.net | 41 comment(s)
Crosstalk vulnerability in Intel processors allows information to be extracted from other cores

Meet Crosstalk, a new Intel specific vulnerability that allows you to run an application on one kernel and extract information from applications that run on other kernels. This works even on virtual machines, so it is a major danger for servers since wyou can access virtual machines that run on other cores.

All patches related to Specter, Meltdown, and similar vulnerabilities only target attacks within a single core, this vulnerability can still be exploited on up-to-date systems as it operates across multiple cores by exploiting vulnerabilities in the shared buffer that the processor. Since a single physical processor is used on many systems to host instances of multiple people or companies, this is dangerous since other people's instances can be accessed and their information extracted.

The study learned that a large number of processors are affected, including from Broadwell to Coffee Lake Refresh. The only unaffected processors are the Xeon Cascade Lake, which is the next-generation server CPUs, making most servers with older technologies vulnerable.

Intel announced the release of a patch that is already available to partners, which delays the access of other cores to the buffer when a core uses RDRAND, RDSEED, or EGETKEY instructions. Also, if multiple cores execute these instructions, they will be executed in series instead of parallel, so that only one nucleus accesses at a time and data leakage is avoided.

If you are interested in reading the technical aspects of the vulnerability, you can read finding information on the official VUSEC page and on the official Intel page.







« Free to Grab: Ark Survival Evolved and Samurai Shodown Collection at EGS · Crosstalk vulnerability in Intel processors allows information to be extracted from other cores · PCIe 6.0 Specification finalized in 2021 and 4 times faster than PCIe 4.0 »

9 pages 1 2 3 4 > »


k3vst3r



Posts: 3580
Joined: 2009-01-03

#5798197 Posted on: 06/11/2020 09:28 AM
This affect newer chips like 10900k?

Fox2232
Senior Member



Posts: 11809
Joined: 2012-07-20

#5798209 Posted on: 06/11/2020 09:39 AM
Only important thing is performance loss. What @user1 wrote indicates that for certain instructions, loss is up to 97%.

asturur
Senior Member



Posts: 1202
Joined: 2010-05-12

#5798210 Posted on: 06/11/2020 09:41 AM
I wanted to ask here exactly, what are those instructions doing? Because in this case would be better to patch compilers to use them as less as possible.

Fox2232
Senior Member



Posts: 11809
Joined: 2012-07-20

#5798211 Posted on: 06/11/2020 09:43 AM
I wanted to ask here exactly, what are those instructions doing? Because in this case would be better to patch compilers to use them as less as possible.

In that case Attacker will likely use his own tooling to maximize potential. When using default tooling will result in 100 times longer data extraction, it is easier to just use pre-patch compiler.

Goiur
Senior Member



Posts: 1126
Joined: 2009-04-29

#5798212 Posted on: 06/11/2020 09:51 AM
New arq cant come soon enough for intel...

9 pages 1 2 3 4 > »


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2022