If you're new to AirPods, considering buying a pair, or just want to pick up some new tips.
Intel Chips Have Memory Access Design Flaw and Fix Could Lead to Performance Drop
A serious design flaw and security vulnerability has been discovered in Intel's CPUs that will require an update at the operating system level to fix, reports The Register. All modern computers with Intel chips from the last 10 years appear to be affected, including those running Windows, Linux, and macOS.
This means malicious programs can potentially, in a worst case scenario, read the contents of the kernel memory, which can include information like passwords, login keys, and more. It's not yet clear how severe the bug is, but The Register speculates that it's significant given the rapid changes being made to Windows and Linux.
It's not yet clear how Macs will be impacted, as there is little information available at this time. Software updates are in the works for Linux and Windows, and though not mentioned, Apple is also likely working on a fix for the issue.
Full details on what's known about the vulnerability can be found at The Register, and additional information will be available later this month when complete details on the design flaw are shared.
Similar operating systems, such as Apple's 64-bit macOS, will also need to be updated - the flaw is in the Intel x86 hardware, and it appears a microcode update can't address it. It has to be fixed in software at the OS level, or go buy a new processor without the design blunder.Full details on the vulnerability aren't yet known as the information is currently under embargo until later in the month. The Register has unearthed some data, however, and it seems the bug allows normal user programs to see some of the contents of the protected kernel memory.
This means malicious programs can potentially, in a worst case scenario, read the contents of the kernel memory, which can include information like passwords, login keys, and more. It's not yet clear how severe the bug is, but The Register speculates that it's significant given the rapid changes being made to Windows and Linux.
At worst, the hole could be abused by programs and logged-in users to read the contents of the kernel's memory. Suffice to say, this is not great. The kernel's memory space is hidden from user processes and programs because it may contain all sorts of secrets, such as passwords, login keys, files cached from disk, and so on. Imagine a piece of JavaScript running in a browser, or malicious software running on a shared public cloud server, able to sniff sensitive kernel-protected data.To fix the bug, the kernel's memory needs to be isolated from user processes using Kernel Page Table Isolation, which could cause a performance hit on some machines. According to The Register, Linux and Windows machines will see a 5 to 30 percent slowdown once the fix is in place.
It's not yet clear how Macs will be impacted, as there is little information available at this time. Software updates are in the works for Linux and Windows, and though not mentioned, Apple is also likely working on a fix for the issue.
Full details on what's known about the vulnerability can be found at The Register, and additional information will be available later this month when complete details on the design flaw are shared.
Tags: Intel, Meltdown-Spectre
[ 503 comments ]
Top Rated Comments
(View all)
16 months ago
According to The Register, Linux and Windows machines will see a 5 to 30 percent slowdown once the fix is in place. It's not yet clear how Macs will be impacted,
Slowdowns you say? Maybe my MBP will see improved battery life. ;)
16 months ago
The flaw is so old that it even affects the currently selling Mac Mini!!!!
16 months ago
So Intel sells a defective product for 10 years, we buy said product with certain advertised specifications which are no longer accurate, and now we are expected to pay the consequences of this without recourse?
What the....
What the....
16 months ago
Apple: We might see some backlash for making people’s phones run slower.
Intel: Hold my beer…
Intel: Hold my beer…
16 months ago
This is surprising news...and how is Intel going to take responsibility? If this was a bad air bag, they would have to replace it?!
[ Read All Comments ]
Following the release of iOS 12.1.4 on February 7, Apple has stopped signing iOS 12.1.3, the previous version of iOS that was available to consumers.
iPhone, iPad, and iPod touch owners who have...
The Cleveland Cavaliers and Aramark, a food and beverage vendor, today announced a new Apple Business Chat feature that will allow Cleveland Cavaliers fans to order drinks from their seats through...
Apple's new iPad Air and fifth-generation iPad mini both work with the Apple Pencil, but are limited to the first-generation Apple Pencil rather than the second-generation model, which only works...
Effective today, the Apple Pencil no longer needs to be purchased at the same time as an iPad to be eligible for AppleCare+ coverage, according to an announcement shared with Apple Stores and Apple...
Sony today announced that its PlayStation Vue app for the Apple TV has been updated with multi-view support, allowing users to watch up to four live channels on one screen.
The new PlayStation...
Apple today seeded the sixth beta of an upcoming macOS Mojave 10.14.4 update to developers for testing purposes, one week after seeding the fifth macOS Mojave 10.14.4 beta and two months after...
Apple today seeded the sixth beta of an upcoming tvOS 12.2 update to developers for testing purposes, one week after seeding the fifth beta and more than a month after releasing the tvOS 12.1.2...
Apple today seeded the sixth beta of an upcoming watchOS 5.2 update to developers, one week after seeding the fifth watchOS 5.2 beta and two months after releasing watchOS 5.1.3.
Once the proper...
