Meltdown and Spectre

[Sushubh]

Critical flaws revealed to affect most Intel chips since 1995 | ZDNet

Meltdown and Spectre

Meltdown and Spectre

 

[Sushubh]

Intel Responds to Security Research Findings

 

[Sushubh]

Critical "Meltdown" and "Spectre" Flaws Breaks Basic Security for Intel, AMD, ARM Computers | WIRED

 

[Sushubh]

Kernel-memory-leaking Intel processor design flaw forces Linux, Windows redesign • The Register

 

[Sushubh]

Google Online Security Blog: Today's CPU vulnerability: what you need to know

 

[Sushubh]

Google’s Mitigations Against CPU Speculative Execution Attack Methods

 

---

[Sushubh]

Microsoft:

Microsoft is updating Windows 10 today with a special fix for the issue and also making available updates for Windows 7 and Windows 8.
"We're aware of this industry-wide issue and have been working closely with chip manufacturers to develop and test mitigations to protect our customers. We are in the process of deploying mitigations to cloud services and have also released security updates to protect Windows customers against vulnerabilities affecting supported hardware chips from Intel, ARM, and AMD. We have not received any information to indicate that these vulnerabilities had been used to attack our customers."

AMD:

"To be clear, the security research team identified three variants targeting speculative execution. The threat and the response to the three variants differ by microprocessor company, and AMD is not susceptible to all three variants. Due to differences in AMD's architecture, we believe there is a near zero risk to AMD processors at this time. We expect the security research to be published later today and will provide further updates at that time."

ARM:

"Arm (has) been working together with Intel and AMD to address a side-channel analysis method which exploits speculative execution techniques used in certain high-end processors, including some of our Cortex-A processors. This method requires malware running locally and could result in data being accessed from privileged memory. Please note that our Cortex-M processors, which are pervasive in low-power, connected IoT devices, are not impacted.
"We are encouraging our silicon partners to implement the software mitigations developed if their chips are impacted."

 

[Sushubh]

AWS Developer Forums: Degraded performance after forced ...

 

[Sushubh]

Project Zero: Reading privileged memory with a side-channel

 

[Sushubh]

Am I affected by the bug?
Most certainly, yes.

Can I detect if someone has exploited Meltdown or Spectre against me?
Probably not. The exploitation does not leave any traces in traditional log files.

Can my antivirus detect or block this attack?
While possible in theory, this is unlikely in practice. Unlike usual malware, Meltdown and Spectre are hard to distinguish from regular benign applications. However, your antivirus may detect malware which uses the attacks by comparing binaries after they become known.

What can be leaked?
If your system is affected, our proof-of-concept exploit can read the memory content of your computer. This may include passwords and sensitive data stored on the system.

Has Meltdown or Spectre been abused in the wild?
We don't know.

Is there a workaround/fix?
There are patches against Meltdown for Linux ( KPTI (formerly KAISER)), Windows, and OS X. There is also work to harden software against future exploitation of Spectre, respectively to patch software after exploitation through Spectre .

Which systems are affected by Meltdown?
Desktop, Laptop, and Cloud computers may be affected by Meltdown. More technically, every Intel processor which implements out-of-order execution is potentially affected, which is effectively every processor since 1995 (except Intel Itanium and Intel Atom before 2013). We successfully tested Meltdown on Intel processor generations released as early as 2011. Currently, we have only verified Meltdown on Intel processors. At the moment, it is unclear whether ARM and AMD processors are also affected by Meltdown.

Which systems are affected by Spectre?
Almost every system is affected by Spectre: Desktops, Laptops, Cloud Servers, as well as Smartphones. More specifically, all modern processors capable of keeping many instructions in flight are potentially vulnerable. In particular, we have verified Spectre on Intel, AMD, and ARM processors.

Which cloud providers are affected by Meltdown?
Cloud providers which use Intel CPUs and Xen PV as virtualization without having patches applied. Furthermore, cloud providers without real hardware virtualization, relying on containers that share one kernel, such as Docker, LXC, or OpenVZ are affected.

 

[Sushubh]

Source

 

[Sushubh]

Researchers Discover Two Major Flaws in the World’s Computers - The New York Times

 

[Sushubh]

We translated Intel's crap attempt to spin its way out of CPU security bug PR nightmare • The Register

 

[Sushubh]

Intel was aware of the chip vulnerability when its CEO sold off $24 million in company stock | Business Insider India

 

[Sushubh]

LKML: Linus Torvalds: Re: Avoid speculative indirect calls in kernel