스펙터 "SWAPGS" 완화 성능 영향의 초기 벤치 마크

ment 8/9 '19 posted (8/9 '19 edited) 뉴스 IT

• 레드햇은이 취약점이 인텔과 AMD 칩 모두에 영향을 미쳤으며 사용자에게 "정오표가 나오자마자 시스템을 업데이트하도록 촉구했다"고 밝혔습니다.

• Bitdefender가 발견한 취약점은 SWAPGS를 지원하는 모든 Intel CPU와 WSGRBASE라는 다른 명령에 영향을 줍니다.

• 인텔 담당자는 "인텔은 업계 파트너와 함께 이 문제가 소프트웨어 수준에서 더 잘 해결되기에 연구원들을 Microsoft에 연결시키는 것으로 판단했습니다.

• 이 취약점이 널리 악용될 가능성은 거의 없지만, 투기적 실행으로 인해 발생하는 새로운 CPU 결함을 완전히 패치하기가 어렵다는 증거입니다.

• 마이크로소프트는 지난달 인텔이 2012 년부터 도입한 모든 CPU의 심각한 취약점을 완화하는 자동 업데이트를 발표했다고 이 결함을 발견한 연구원들은 화요일 밝혔습니다.

• 이는 "투기적 실행'라는 기능을 활용합니다. 이 기능은 장치의 CPU 속도 향상을 목적으로 다음에 어떤 명령이 오는지 짐작합니다.

Silent Windows update patched side channel that leaked data from Intel CPUs [arstechnica.com]

Intel chips have another major security flaw [www.techradar.com]

Initial Benchmarks Of The Spectre "SWAPGS" Mitigation Performance Impact [www.phoronix.com]

Microsoft Confirms New Windows CPU Attack Vulnerability, Advises All Users To Update Now [www.forbes.com]

New Spectre and Meltdown flaw affects Macs running Windows [9to5mac.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

8/9 '19 answered

The SWAPGS attack affects all Intel CPUs, #Bitdefender researchers warn. via @arstechnica https://t.co/04slBCBgzT
— Bitdefender (@Bitdefender) August 7, 2019

The side channel attacks continue.https://t.co/jKVlzy3pe9
— Martin Thompson (@mjpt777) August 7, 2019

Silent Windows Update Patched Side Channel That Leaked Data From Intel CPUs https://t.co/70zRoL5rHJ #news
— packet storm (@packet_storm) August 7, 2019

Another OS vendor (Microsoft) deals with Intel CPU flaws, but mark my words, the continuing discovery of Intel & AMD flaws won't end until full CPU redesigns are done and correctly: https://t.co/b8bshBbTTD @dangoodin001
— Tom Henderson (@extremelabs) August 7, 2019

https://t.co/yC3d6rgxR4 SWAPGS라는 인텔의 사이드채널 보안결함을 마이크로소프트가 조용히 업데이트함. 12년된 보안결함을 12개월 전 쯤에 발견.
— 음모론 토끼 (@AstroRabbit) August 7, 2019

Microsoft Confirms NEW Windows CPU Attack Vulnerability, Advises All Users To Update Now

?Affects Windows running on 64-bit Intel & AMD processors could give attacker access to passwords, private conversations, and more#AMD #technology via @happygeek https://t.co/nseiD4pPEu pic.twitter.com/loKmKtK6C5
— Marsha Collier (@MarshaCollier) August 7, 2019

Microsoft Confirms New Windows CPU Attack Vulnerability, Advises All Users To Update Now via @forbes https://t.co/B9ZyaVoaAO
— Dave Alan (@array_str) August 7, 2019

A security vulnerability that affects Windows computers running on 64-bit Intel and AMD processors could give an attacker access to your passwords, private conversations, and any other information within the operating system kernel memory. https://t.co/n2gWyWNfyd
— Geeknik (•̪̀●́) Labs (@geeknik) August 7, 2019

.@Microsoft Confirms New #Windows CPU Attack Vulnerability, Advises All Users To Update Now via @forbes https://t.co/HqzyC71CcB
— Presentation Guild (@presentguild) August 7, 2019

#Bitdefender researchers warn about new vulnerability on machines using Intel processors via @forbes https://t.co/NgWLq16p90
— Bitdefender (@Bitdefender) August 7, 2019

#Microsoft confirms new #Windows CPU attack vulnerability.

Although it was just disclosed, @Microsoft has already released a #patch to fix this #vulnerability on July 9th. Be sure to install it ASAP!https://t.co/UPSAa350qY #CyberSecurity #infosec #infosecurity #vulnerabilities
— Eviscer8 ?️ (@Fadeddeath) August 7, 2019

Microsoft Confirms New Windows CPU Attack Vulnerability, Advises All Users To Update Now https://t.co/ZRcDe4kWXI #infosec #cybersecurity @forbes
— Grid32 Cybersecurity (@Grid32InfoSec) August 7, 2019

permanent link

Featured

Important Notice: Discontinuation of Our Wiki Service

Dear Valued Users,

We hope this message finds you well. We are writing to inform you of an important upcoming change to our services. After careful consideration and analysis, we have made the difficult decision to discontinue our wiki site, effective one month from 2024/04/30.

This was not an easy decision to make, as we understand the importance of the resources and community that have been built around our wiki. However, due to evolving market conditions and strategic realignments, we must redirect our resources and efforts towards other ventures that will allow us to serve you better in the future.

What This Means for You:

Access to Content: You will continue to have full access to all content on the wiki until the discontinuation date. We encourage you to save or migrate any content you wish to retain.
Final Date of Service: The wiki will become inaccessible starting 1st June 2024, after which all content will be permanently removed.

We are immensely grateful for the support and contributions of our user community throughout the years. The wiki is being retired, but our team will be back soon with new services and apps.

Thank you for being a part of our journey.

Warm regards,

editoy Inc.

Related

Featured