Intel Memory Access Design Flaw Already Addressed by Apple in macOS 10.13.2
A serious design flaw and security vulnerability discovered in Intel CPUs has reportedly already been partially addressed by Apple in the recent macOS 10.13.2 update, which was released to the public on December 6.
According to developer Alex Ionescu, Apple introduced a fix in macOS 10.13.2, with additional tweaks set to be introduced in macOS 10.13.3, currently in beta testing. AppleInsider also says that it has heard from "multiple sources within Apple" that updates made in macOS 10.13.2 have mitigated "most" security concerns associated with the KPTI vulnerability.
Publicized yesterday,
the design flaw in Intel chips allows normal user programs to see some of the contents of the protected kernel memory, potentially giving hackers and malicious programs access to sensitive information like passwords, login keys, and more.
Full details on the vulnerability continue to be unavailable and under embargo, so it's not yet clear just how serious it is, but fixing it involves isolating the kernel's memory from user processes using Kernel Page Table Isolation at the OS level. Implementing Kernel Page Table Isolation could cause a performance hit on some machines.
According to The Register, which first shared details on the vulnerability, Windows and Linux machines will see a 5 to 30 percent slowdown once a fix is in place. It appears Macs may not be hit as heavily, as no noticeable performance slowdowns have been reported since the launch of macOS 10.13.2.
Ionescu also says that performance drop on a system with PCID (Process-Context Identifiers), available on most modern Macs, is "minimal," so most users may not see an impact on day-to-day Mac usage.
Popular Stories
Apple today announced its second fall event of 2023, with the online event set to be held on Monday, October 30 at 5:00 p.m. Pacific Time. Apple's October event will be about the Mac, and the company is expected to refresh several Macs in the lineup. Apple's Events website features an Apple logo on a black background that morphs into the Mac Finder icon, confirming the event's Mac focus. As ...
Apple plans to overhaul the TV app in an effort to consolidate its Apple TV+ streaming service and its standalone movie and TV show purchase options, according to Bloomberg's Mark Gurman. A tvOS update in December will introduce the changes that Apple has planned. To push users to the Apple TV app, Apple plans to remove its standalone Apple TV apps that are available for renting and...
Apple's iOS 17.1, iPadOS 17.1, macOS Sonoma 14.1, tvOS 17.1, watchOS 10.1, and HomePod Software 17.1 updates are expected to be released to the public tomorrow following several weeks of beta testing. We are expecting the software to go live at 10:00 a.m. Pacific Time, which is when Apple typically releases updates. Last week, Apple seeded release candidates (RCs) for all of the upcoming...
Apple's upcoming "Scary Fast" event will focus on the M3 series MacBook Pro models, according to Apple analyst Ming-Chi Kuo. Kuo's wording suggests that he is expecting multiple M3 chips rather than just a single M3 chip, hinting at the possibility of M3, M3 Pro, and M3 Max chips. If Apple does release M3, M3 Pro, and M3 Max chips at once, we can expect to see the new chips introduced in...
An image allegedly showing the box for a new unreleased MacBook Pro has emerged on Chinese social media platform Weibo. The picture, re-shared on X by ShrimpApplePro, shows what looks like Apple packaging featuring a MacBook Pro image with previously unseen wallpaper on the display. The wallpaper bears a passing resemblance to the one Apple used for the iPhone 15 Pro. It's unclear whether...
Apple today announced that it is increasing the prices of some of its subscription-based services, including Apple TV+, Apple Arcade, and Apple News+, for new and existing subscribers in the U.S. and many other countries around the world. The price changes in the U.S. are as follows:Apple TV+: $6.99 per month → $9.99 per month Apple Arcade: $4.99 per month → $6.99 per month Apple News+:...
Apple today released iOS 17.1 and iPadOS 17.1, the first major updates to the iOS 17 and iPadOS 17 operating system updates that came out in September. iOS 17.1 and iPadOS 17.1 arrive as build 21B80 for the iPhone 15 lineup and 21B74 for all other compatible devices, and they can be downloaded on eligible iPhones and iPads over-the-air by going to Settings > General > Software Update. In...
Apple yesterday announced that it will be holding an online event on Monday, October 30 starting at 5 p.m. Pacific Time, and there are several reasons to believe that gaming on the Mac will be one of the major focuses of the event. Below, we have recapped Apple's recent gaming-related efforts on the Mac and other clues heading into the event next week. Hardware-Accelerated Ray Tracing...
At WWDC 2022 last year, Apple previewed the next generation of CarPlay, promising deeper integration with vehicle functions like A/C and FM radio, support for multiple displays across the dashboard, personalization options, and more. Apple said the first vehicles with support for the next-generation CarPlay experience would be announced in late 2023, but it has still not shared any...
Top Rated Comments
We're running benchmark processes concurrently with PCID disabled, employing supplementary reservoir matching sequences throughout our lab here at Duke.
The testing has just begun - so I'll be posting the results here in about an hour, for anyone interested in how their machines might be affected.
Students have been instructed to take the machines through a variety of real world tests -
So we'll be posting that, as well as the conclusive results provided by our benchmark studies - to hopefully help clear the air and provide a more balanced issuance of the possible affections of data-protected kernel-modeling architecture implications.