Changes

Security - Meltdown and Spectre

2,696 bytes added, 12:30, 4 January 2018
Created page with "= Overview = A security issue has been found by Google researchers in Intel and AMD processors. ''Meltdown and Spectre exploit critical vulnerabilities in modern processor..."
= Overview =


A security issue has been found by Google researchers in Intel and AMD processors.


''Meltdown and Spectre exploit critical vulnerabilities in modern processors. These hardware bugs allow programs to steal data which is currently processed on the computer. While programs are typically not permitted to read data from other programs, a malicious program can exploit Meltdown and Spectre to get hold of secrets stored in the memory of other running programs. This might include your passwords stored in a password manager or browser, your personal photos, emails, instant messages and even business-critical documents.


'''Which systems are affected by Meltdown?'''


Desktop, Laptop, and Cloud computers may be affected by Meltdown. More technically, every Intel processor which implements out-of-order execution is potentially affected, which is effectively every processor since 1995 (except Intel Itanium and Intel Atom before 2013). We successfully tested Meltdown on Intel processor generations released as early as 2011. Currently, we have only verified Meltdown on Intel processors. At the moment, it is unclear whether ARM and AMD processors are also affected by Meltdown.


'''Which systems are affected by Spectre?'''

Almost every system is affected by Spectre: Desktops, Laptops, Cloud Servers, as well as Smartphones. More specifically, all modern processors capable of keeping many instructions in flight are potentially vulnerable. In particular, we have verified Spectre on Intel, AMD, and ARM processors.


'' [[https://meltdownattack.com/]]


The good news is that is was found by White Hat hackers. The good guys. They reported the issue to Intel and AMD without telling the world first. This has given the companies a chance to develop responses.


If the issue has been used historically it cannot be detected.


The technical explanation is available here https://lwn.net/Articles/738975/


= Detection and correction =


The primary detection tool to identify if there is an issue is https://downloadcenter.intel.com/download/27150?v=t


The results are put into a text file [[File:security_spectre_001.png]]


The situation is developing globally with many agencies reporting updates as manufacturers create them https://www.cnet.com/uk/how-to/how-to-fix-meltdown-spectre-intel-amd-arm-windows-mac-android-ios/



= Is bxp affected =


All n One take their security and patch management very seriously.



* https://security-center.intel.com/advisories.aspx
* https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr


https://www.theverge.com/2018/1/3/16846840/intel-arm-processor-flaw-chipocalypse-windows-macos-linux
7,528
edits