Intel also points out that multiple chip-providers are affected, including its own processors and those from ARM the latter has said its Cortex-A chipsets are vulnerable. Initial reports cautioned it could add up to a 30-percent hit or greater, though Intel said this afternoon that, for the average user, it would be at most a 2-percent slowdown of their system. The flaws represented specific bugs but also conceptual data protection vulnerabilities in the schemes chips were using to make data available for processing more quickly and speed. What's unclear – and will remain that way until more of the patches hit systems – is just how much of an impact the fixes have on overall performance. It's been more than five years since the Spectre and Meltdown processor vulnerabilities sparked a wave of revisions to computer chip designs across the industry. MORE What you need to know about Meltdown and Spectre
INTEL OUT SPECTRE MELTDOWN CHIP FLAW PATCH
"As this is a new class of attack," Matt Linton, Senior Security Engineer and Pat Parseghian, Technical Program Manager, write, "our patch status refers to our mitigation for currently known vectors for exploiting the flaw." It's worth noting Google's warning that, though it may have patches, there's still the risk of a new Meltdown or Spectre-related exploit being discovered in the future.
However, Chrome and Chrome OS users, along with some other Google Cloud Platform product users, may have to do something in order to secure their systems. Google Home and Chromecast, Google Wifi, and OnHub users are also in the clear.
INTEL OUT SPECTRE MELTDOWN CHIP FLAW ANDROID
Android devices with the latest security update, published earlier this month, are protected, while online services like Google Apps, G Suite, and the Google App Engine require no user action. If you're a Google product user, the important thing you'll probably want to know is whether your products are currently safe or not. Antivirus software is "unlikely in practice" to spot either Meltdown or Spectre attacks at work. If you were hoping to ignore the whole situation, you'll probably be disappointed: most people are likely to be affected by the bug, and there's no trace left of the exploitation even if you are. However, "because of existing public reports and growing speculation in the press and security research community about the issue, which raises the risk of exploitation" it has pulled the trigger early.Ī site,, hosted by the Graz University of Technology – researchers from which also reported both Meltdown and Spectre – has further details. According to Google, the issue was initially intended to be disclosed on January 9th, 2018. Google's Project Zero researcher, Jann Horn, seemingly identified the speculative execution issues independently to other researchers.
0 kommentar(er)
