Crosstalk vulnerability in Intel processors allows information to be extracted from other cores
Click here to post a comment for Crosstalk vulnerability in Intel processors allows information to be extracted from other cores on our message forum
schilperoordbas
It almost feels like Intel is dying. I hope it's not for the CPU market's sake.
TheDeeGee
It's fine, my Pentium III 4770K can't get any slower anyways.
Picolete
Every month i post the same...
Another month another security hole
mohiuddin
holystarlight
We recently just moved a lot of are Intel based systems and firewalls and such to AMD Eypc, purely because there new exploit every couple of months with Intel, and when your safe guarding your company behind a firewall last thing you want is a CPU full of flaws that need to be patched consistently and not to mention the performance degradation and downtime to do these updates/bios updates. Not saying AMD Eypc are exploit free but they are in far better place then Intel currently is in.
user1
https://software.intel.com/content/www/us/en/develop/blogs/the-difference-between-rdrand-and-rdseed.html
Basically since applying this specific mitigation to all instruction would leave you with a pentium 2 , intel has opted to only enable it for instructions of cryptographic significance, ie security key generation ect.
you can find a list here https://software.intel.com/security-software-guidance/insights/processors-affected-special-register-buffer-data-sampling
it would appear comet-lake and icelake is not affected,
Alarmingly it seems intel has known about this since mid 2019, and didn't disclose it until after they launched patched chips.....
you can find a destription of 2 of the instructions effected here Venix
Well after the first bomb dropped then everyone just looking for exploits i have a feeling after meltdown etc is security researchers favourite arc to keep finding exploits for it , it seems.
JAMVA
Intel Inside is the gift that keeps on giving all year round 🙂
It's like a one year membership to the Jelly of the Month Club 😛
Mufflore
Just wow!
What next?
I_Eat_You_Alive
At this rate in the next year or so AMD will have the market share in both the desktop and server markets. More exploits means more businesses saying it is not worth the loyalty to Intel and go with the superior AMD product at the moment. Intel is one big lawsuit away from being a distant memory with all of these purposely hidden exploits. If someone large enough gets hit with an exploit Intel knew about and did not disclose it and they suffer a large enough loss it could cost Intel billions in damages. Personally I think Intel should pull their processors off the market till they get sh#t straight. The only Intel based computer I have left is a 4970 Devil's Canyon in a legacy gaming box that is no longer connected to the internet running a bios before all of the microcode updates and all of the windows fixes removed. If it needs an update for anything it gets downloaded and applied locally; my network is to important to play the lottery with an intel chip on the web.
Gonokhakus
Dazz
Venix
Glottiz
Fender178
Glottiz
Aura89
Glottiz
Ghosty
mbk1969
Good thing games are not affected. 😎
As for security risks, (1) your rig should be hacked to run the malware code, (2) malware code should send all data it reads from vulnerable buffer (mentioned in article) to hacker, (3) hacker should sit and try to discern the tons of info he gets (not knowing what any portion of that info is about).