Choose style:

Author Topic: ATTEN. Intel cpu users  (Read 6256 times)

0 Members and 1 Guest are viewing this topic.

Offline DAMIEN1307

  • Member
  • ***
  • Posts: 154
  • Karma: 11
  • non illigitamus carborundum est
    • View Profile
  • Peppermint version(s): Peppermint 8.5 (Respin) 64 bit
ATTEN. Intel cpu users
« on: January 02, 2018, 03:42:06 pm »
hi folks...saw this today and thought i would share as well hoping to hear feed back on this new intel issue...

https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/
ORDO AB CHAO

Offline PCNetSpec

  • Administrator
  • Hero
  • *****
  • Posts: 25659
  • Karma: 2819
  • "-rw-rw-rw-" .. The Number Of The Beast
    • View Profile
    • PCNetSpec
  • Peppermint version(s): Peppermint 8R, 9, and 9R
Re: ATTEN. Intel cpu users
« Reply #1 on: January 03, 2018, 08:42:21 am »
So .. so far Intel have:-

a) put a ton of users at risk with their management engine vulnerability .. that OEM's had to fix

b) IMHO been the major player at fault in the Ubuntu 17.10 BIOS fiasco by releasing a buggy SPI driver .. that Ubuntu and Lenovo had to fix

and now this .. which OS devs have to fix.

Good going Intel.
WARNING: You are logged into reality as 'root' .. logging in as 'insane' is the only safe option.

Team Peppermint
PCNetSpec

Offline scifidude79

  • Global Moderator
  • Hero
  • *****
  • Posts: 4029
  • Karma: 863
    • View Profile
  • Peppermint version(s): Peppermint 9
Re: ATTEN. Intel cpu users
« Reply #2 on: January 03, 2018, 09:56:06 am »
Good going Intel.

Big businesses are like that.  Intel churns out so many chips a year that they probably can't be bothered by little things like user security.

Offline christianvl

  • Member
  • ***
  • Posts: 191
  • Karma: 33
  • The Wheel weaves as the Wheel wills
    • View Profile
  • Peppermint version(s): 9
Re: ATTEN. Intel cpu users
« Reply #3 on: January 03, 2018, 12:20:41 pm »
According to the article, the fix will result in a performance hit.

Can anyone imagine an AMD lawsuit against intel? How much marketshare they've lost over the years as Intel's chips showed best performance?

And now imagine how much it will cost to some companies to test and update their systems?

After this story, wiil we see more ARM chips on desktop/laptop computers?
There are neither beginnings or endings to the turning of the Wheel of Time. But it was a beginning.

Offline DAMIEN1307

  • Member
  • ***
  • Posts: 154
  • Karma: 11
  • non illigitamus carborundum est
    • View Profile
  • Peppermint version(s): Peppermint 8.5 (Respin) 64 bit
Re: ATTEN. Intel cpu users
« Reply #4 on: January 03, 2018, 05:14:57 pm »
i do not know if this is applicable or not but my main driver for everyday use is an AMD APU/CPU...if i am thinking clearly and correctly, might i assume that when the kernel fix for INTELs stupidity does come through the pipeline, will that kernel be a "one size fits all" solution?...in other words, will the kernel security update that is rumoured to slow down INTEL chips also have the same effect on AMDs chip even though AMD is not affected by INTELs stupidity nor is at fault here and thus also suffer the same slow down scenario?...DAMIEN
« Last Edit: January 03, 2018, 05:18:30 pm by DAMIEN1307 »
ORDO AB CHAO

Offline DAMIEN1307

  • Member
  • ***
  • Posts: 154
  • Karma: 11
  • non illigitamus carborundum est
    • View Profile
  • Peppermint version(s): Peppermint 8.5 (Respin) 64 bit
Re: ATTEN. Intel cpu users
« Reply #5 on: January 03, 2018, 06:03:44 pm »
i took notice today of this article from toms hardware... http://www.tomshardware.com/news/intel-cpu-bug-amd-performance,36213.html ...they basically state that this might be overblown...

i do notice that the toms hardware article in the above post is based on INTELs response to the uproar as well as their stock prices taking a nose dive and do i trust INTELs response? oh yea...just like i trust a Microsoft response...what i DO expect is that these folks, in order to protect their own self interests as well as their own piggy bank, is that they will continue to apply lipstick to their pig along with a little maybeline makeup and then pronounce the pig as being "pretty"...my personal opinion? its still a pig no matter how much you try to pretty it up...DAMIEN
ORDO AB CHAO

Offline PCNetSpec

  • Administrator
  • Hero
  • *****
  • Posts: 25659
  • Karma: 2819
  • "-rw-rw-rw-" .. The Number Of The Beast
    • View Profile
    • PCNetSpec
  • Peppermint version(s): Peppermint 8R, 9, and 9R
Re: ATTEN. Intel cpu users
« Reply #6 on: January 03, 2018, 06:58:25 pm »
As (as far as I can see) there's been no full disclosure of what the bug is yet it'd probably be best to wait and see before lining them against the wall.

This bit did however raise an eyebrow:-

Quote from: Intel
Intel believes its products are the most secure in the world

« Last Edit: January 03, 2018, 07:02:52 pm by PCNetSpec »
WARNING: You are logged into reality as 'root' .. logging in as 'insane' is the only safe option.

Team Peppermint
PCNetSpec

Offline scifidude79

  • Global Moderator
  • Hero
  • *****
  • Posts: 4029
  • Karma: 863
    • View Profile
  • Peppermint version(s): Peppermint 9
Re: ATTEN. Intel cpu users
« Reply #7 on: January 03, 2018, 08:47:29 pm »
Quote from: Intel
Intel believes its products are the most secure in the world

Microsoft believes they make the best OS on the planet, and Apple believes they have the best devices.  So, I guess we can add Intel to the list of delusional companies.

Offline DAMIEN1307

  • Member
  • ***
  • Posts: 154
  • Karma: 11
  • non illigitamus carborundum est
    • View Profile
  • Peppermint version(s): Peppermint 8.5 (Respin) 64 bit
Re: ATTEN. Intel cpu users
« Reply #8 on: January 03, 2018, 09:35:08 pm »
this excerpt snippet taken from another posting i made on this issue on another linux forum

" Linus weighing in on the Intel press release that DAMIEN also commented on above: https://lkml.org/lkml/2018/1/3/797."

From   Linus Torvalds <>
Date   Wed, 3 Jan 2018 15:51:35 -0800
Subject   Re: Avoid speculative indirect calls in kernel
On Wed, Jan 3, 2018 at 3:09 PM, Andi Kleen <andi@firstfloor.org> wrote:
> This is a fix for Variant 2 in
> https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html
>
> Any speculative indirect calls in the kernel can be tricked
> to execute any kernel code, which may allow side channel
> attacks that can leak arbitrary kernel data.

Why is this all done without any configuration options?

A *competent* CPU engineer would fix this by making sure speculation
doesn't happen across protection domains. Maybe even a L1 I$ that is
keyed by CPL.

I think somebody inside of Intel needs to really take a long hard look
at their CPU's, and actually admit that they have issues instead of
writing PR blurbs that say that everything works as designed.

.. and that really means that all these mitigation patches should be
written with "not all CPU's are crap" in mind.

Or is Intel basically saying "we are committed to selling you shit
forever and ever, and never fixing anything"?

Because if that's the case, maybe we should start looking towards the
ARM64 people more.

Please talk to management. Because I really see exactly two possibibilities:

 - Intel never intends to fix anything

OR

 - these workarounds should have a way to disable them.

Which of the two is it?

                   Linus


sorry for the "language" that linus uses here but it is after all linus speaking...lol...DAMIEN
« Last Edit: January 03, 2018, 09:38:53 pm by DAMIEN1307 »
ORDO AB CHAO

Offline scifidude79

  • Global Moderator
  • Hero
  • *****
  • Posts: 4029
  • Karma: 863
    • View Profile
  • Peppermint version(s): Peppermint 9
Re: ATTEN. Intel cpu users
« Reply #9 on: January 03, 2018, 11:23:06 pm »
It makes me want to build a new AMD based rig. 

Offline pin

  • Trusted User
  • Veteran
  • *****
  • Posts: 1829
  • Karma: 256
    • View Profile
Re: ATTEN. Intel cpu users
« Reply #10 on: January 04, 2018, 01:35:06 am »

Online VinDSL

  • Global Moderator
  • Hero
  • *****
  • Posts: 5305
  • Karma: 943
  • Peppermint Mod
    • View Profile
  • Peppermint version(s): Developmental Builds
ATTEN. ALL cpu users
« Reply #11 on: January 04, 2018, 05:32:31 am »
Adding to the fire here...
https://googleprojectzero.blogspot.se/2018/01/reading-privileged-memory-with-side.html?m=1
And...
https://meltdownattack.com/

" ATTEN. Intel ALL cpu users "

Mohit Kumar, just posted an article on this: https://goo.gl/zoBcYZ

Quote
Meltdown and Spectre CPU Flaws Affect Intel, ARM, AMD Processors

Unlike the initial reports suggested about Intel chips being vulnerable to some severe ‘memory leaking’ flaws, full technical details about the vulnerabilities have now been emerged, which revealed that almost every modern processor since 1995 is vulnerable to the issues.


« Last Edit: January 04, 2018, 05:35:36 am by VinDSL, Reason: Addendum »

Offline christianvl

  • Member
  • ***
  • Posts: 191
  • Karma: 33
  • The Wheel weaves as the Wheel wills
    • View Profile
  • Peppermint version(s): 9
Re: ATTEN. Intel cpu users
« Reply #12 on: January 04, 2018, 07:10:21 am »
Adding to the fire here...
https://googleprojectzero.blogspot.se/2018/01/reading-privileged-memory-with-side.html?m=1
And...
https://meltdownattack.com/

" ATTEN. Intel ALL cpu users "

Mohit Kumar, just posted an article on this: https://goo.gl/zoBcYZ

Quote
Meltdown and Spectre CPU Flaws Affect Intel, ARM, AMD Processors

Unlike the initial reports suggested about Intel chips being vulnerable to some severe ‘memory leaking’ flaws, full technical details about the vulnerabilities have now been emerged, which revealed that almost every modern processor since 1995 is vulnerable to the issues.



As I understood, although  AMD chips also have the "bug", it seems they're not susceptible to attacks. But, hey, I don't have any technical skills to fully understand the articles...

Anyway, here's the link to AMD official statement on the case (this link is the same provided on the project zero blog post).

http://www.amd.com/en/corporate/speculative-execution

Enviado de meu Quantum Fly usando Tapatalk

There are neither beginnings or endings to the turning of the Wheel of Time. But it was a beginning.

Online VinDSL

  • Global Moderator
  • Hero
  • *****
  • Posts: 5305
  • Karma: 943
  • Peppermint Mod
    • View Profile
  • Peppermint version(s): Developmental Builds
Re: ATTEN. Intel cpu users
« Reply #13 on: January 04, 2018, 07:59:38 am »
Adding to the fire here...
https://googleprojectzero.blogspot.se/2018/01/reading-privileged-memory-with-side.html?m=1
And...
https://meltdownattack.com/

" ATTEN. Intel ALL cpu users "

Mohit Kumar, just posted an article on this: https://goo.gl/zoBcYZ

Quote
Meltdown and Spectre CPU Flaws Affect Intel, ARM, AMD Processors

Unlike the initial reports suggested about Intel chips being vulnerable to some severe ‘memory leaking’ flaws, full technical details about the vulnerabilities have now been emerged, which revealed that almost every modern processor since 1995 is vulnerable to the issues.



As I understood, although  AMD chips also have the "bug", it seems they're not susceptible to attacks. But, hey, I don't have any technical skills to fully understand the articles...

Anyway, here's the link to AMD official statement on the case (this link is the same provided on the project zero blog post).

http://www.amd.com/en/corporate/speculative-execution

Enviado de meu Quantum Fly usando Tapatalk
Yup, it's a mess.


Sent from my moto e⁴ using Tapatalk


Offline scifidude79

  • Global Moderator
  • Hero
  • *****
  • Posts: 4029
  • Karma: 863
    • View Profile
  • Peppermint version(s): Peppermint 9
Re: ATTEN. Intel cpu users
« Reply #14 on: January 04, 2018, 10:08:33 am »
It seems to me that all processors released in the past 22 years are susceptible to some kind of attack, but Intel is most susceptible.  It looks like AMD is much less susceptible, I'm not sure about ARM.