'Kernel memory leaking' Intel processor design flaw forces Linux, Windows redesign

Discussion in 'other security issues & news' started by Minimalist, Jan 2, 2018.

  1. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    979
    Location:
    Member state of European Union
    I think it is right thing to do in this situation. These new processors for desktop PC's are going to be launched soon, but unfortunately one need to wait for 3rd gen Ryzen laptops a lot more.
     
  2. Floyd 57

    Floyd 57 Registered Member

    Joined:
    Mar 17, 2017
    Posts:
    548
    Location:
    Europe
    Or, instead of paying for the stupid laptops that are uncomfortable, mostly unupgradable, and just inferior in every possible way to a real pc, not to mention the price, asides from the fact they have battery, you can use the so-called desktop carrying cases, there are many variants and they're relatively cheap, here's an example:


    Ofc, that might weight a bit more than a laptop, but that doesn't matter cuz you'll get stronger by carrying it and you'll build big muscles, until eventually you don't even FEEL the weight of the bag :D
     
  3. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    979
    Location:
    Member state of European Union
    Actually I train myself and I am considering myself relatively strong compared to general population. Anyway I need laptop. Period.
     
  4. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
    Actually it is MS that does not support Sandy Bridge, Intel stopped supporting Arrandale (1st gen) this year, but still released microcode updates for Sandy Bridge (2nd gen).
     
  5. Floyd 57

    Floyd 57 Registered Member

    Joined:
    Mar 17, 2017
    Posts:
    548
    Location:
    Europe
    How do you know that?
     
  6. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
    You can check it here:
    Code:
    https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf
    Also, my Linux system with Sandy Bridge CPU did receive the microcode update.
     
  7. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,497
    Manage Speculative Execution Settings Script for Windows
    August 6, 2019
    https://www.ghacks.net/2019/08/06/manage-speculative-execution-settings-script-for-windows/
     
  8. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,497
    Microsoft, Linux Vendors Fix New SWAPGS Vulnerability in Intel CPUs
    August 6, 2019
    https://www.bleepingcomputer.com/ne...s-fix-new-swapgs-vulnerability-in-intel-cpus/
     
    Last edited: Aug 6, 2019
  9. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,497
    Bitdefender's dedicated SWAPGS page
    Bitdefender: Bypassing KPTI Using the Speculative Behavior of the SWAPGS Instruction
     
  10. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,497
    Intel proposes new SAPM memory type to protect against Spectre-like attacks
    New CPU memory type proposed. No silicon prototype. Just a research paper and a lot of hope
    October 1, 2019

    https://www.zdnet.com/article/intel...type-to-protect-against-spectre-like-attacks/
     
  11. HempOil

    HempOil Registered Member

    Joined:
    Jun 15, 2015
    Posts:
    173
    Location:
    Canada
    Running on Intel? If you want security, disable hyper-threading, says Linux kernel maintainer
    Speculative execution bugs will be with us for a very long time
    October 29, 2019
    https://www.theregister.co.uk/2019/10/29/running_on_intel_disable_hyper_threading_says_linux_kernel_maintainer/
     
  12. HempOil

    HempOil Registered Member

    Joined:
    Jun 15, 2015
    Posts:
    173
    Location:
    Canada
    Last edited by a moderator: Nov 5, 2019
  13. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,497
    A new ‘Zombieload’ flaw hits Intel’s newest Cascade Lake chips
    Time to reset your “days since last major chip vulnerability” counter back to zero
    November 12, 2019

    https://techcrunch.com/2019/11/12/intel-cascade-lake-zombieload/
     
  14. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
  15. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    22,497
    MDS: Microarchitectural Data Sampling
    Attacks on the newly-disclosed "MDS" hardware vulnerabilities in Intel CPUs
    https://mdsattacks.com/
     
  16. HempOil

    HempOil Registered Member

    Joined:
    Jun 15, 2015
    Posts:
    173
    Location:
    Canada
    Still no MDS firmware patch incorporated into Windows 10, and I just upgraded to v1909. I don't understand why MS hasn't taken Intel's code and pushed it out ~5 months after it was released?!?!
     
  17. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
    Did the upgrade to 1909 retain the MDS Microcode update?
    Still no mention for a separate download for 1909, only older versions, this is crazy:
    https://support.microsoft.com/en-us/help/4093836/summary-of-intel-microcode-updates
     
  18. HempOil

    HempOil Registered Member

    Joined:
    Jun 15, 2015
    Posts:
    173
    Location:
    Canada
    I should have specified that I'm waiting for the MDS fix for a Sandy Bridge-era CPU. However, I did check whether it was fixed after upgrading to 1909 and it was not. I've pretty much lost any hope that MS is going to release the Intel fix in Windows.
     
  19. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
    Ah thanks anyway for replying. I can't check it myself as my Windows machine still got a bios update with the MDS microcode, so it will work regardless of MS in 1909.
    It is indeed a shame that MS doesn't seem to care about these fixes.
     
  20. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
  21. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    979
    Location:
    Member state of European Union
    Red Hat Recommends Disabling The Intel Linux Graphics Driver Over Hardware Flaw
     
  22. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    979
    Location:
    Member state of European Union
    I use 15.33.*.* series driver for 3rd gen Core hardware (though device manager reports 10.18.*.*). Intel recommends updating to "15.33.x.5122 or higher" but I see only 15.33.49.5100 (released 1/10/2020) and older versions on their download page. What should I do?
     
  23. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    4,278
    Location:
    Outer space
    Same here. Though it is curious that 15.33.49.5100 is released so recently, as they haven't released any other update since May 2019.
     
  24. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    979
    Location:
    Member state of European Union
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.