Kernel memory leaking Intel processor design flaw

Superfly you could be correct but I doubt we will ever know that as a fact.

Those kinds of things are kept very secret.

Jack

Layback Bear said:

Superfly you could be correct but I doubt we will ever know that as a fact.

Those kinds of things are kept very secret.

Jack

Dear Jack

I am always right.

Yours sincerely,

Superfly.

fdegrove said:

Hi,



I'm aware of that John (if I may call you so). But let's not forget it's a speculative exploit and that kind needs computing power to "guess" correctly.
Still, I agree that this should be fixed. And... if it can be done without impacting performance too much then I'm all for it for sure.

Best,

I answer to a lot of different monikers, but John will do nicely, thanks :)

And while it does require computing power for the speculative approach, the exploits actually take some ofthe speculation out by (as per usual) forming a bad call that breaks the chain but doesn't clear out the fill registers that have the sensitive data - which can then be dumped and analyzed. That is the real reason the exploit is dangerous - not for end users, but for cloud operators and those running lots of mission-critical VMs.

Layback Bear said:

I have been watching a lot of video's on this new problem and I'm not particularly worried. The companies that will be hit the most will be Intel and Microsoft for one good reason. They own the market share and have for a long time. Those two companies have more operating systems and CPU's out in the world than the rest put together.
Looking at the stock market tells a story. AMD stock went way up.
I do wonder you release the problem to the News before the updates were available.

I won't be changing to another brand CPU. I have complete trust that Intel will solve the problem as soon as possible, with the loss of speed as low as possible. If I loose 5 % no big deal; my systems will still be super fast. If need be I will just over clock them a bit more.
As you all can tell, I'm a Intel fan person. I have used Intel for a lot of years but I started off being a AMD person.
When I learned more I move to Intel because of a Intel Dealer here in town. I tried Intel for CPU's and SSD's and I will stick with them.

I believe this Flash News about this problem is way over hyped. Saying that I do want the problem fixed as smoothly as possible, now that all the hackers in the world know where to point their hacks.

We will just get in about a week or so of a new security problem and the fix, just like we have been getting for as long as I can remember.
The hackers are always trying new ways of screwing things up. That is what they get paid for.
When we get security patches in Windows you will notice Microsoft never states exactly how the security problem is fixed.
They really don't want the bad guys to know any more information.

Just my thoughts.

Jack

Look at the bigger picture.

1) Intel was made aware of the Meltdown exploit back in June. at that time their stock price was running around $35 USD, on average. Then, there was a large hike (to the tune of 30%) in stock prices, starting in Late September, which took the stock prices over $45 USD. The CEO of Intel filed a 10b5-1 plan with the SEC on Oct 30, after the stock started rising, and then dumped a very large amount of stocks, minimizing the number he owns to the minimum required number for him as CEO of Intel.

From Intel CEO sold millions in stock after company was informed of vulnerability, before disclosure - MarketWatch

Krzanich acquired about 644,000 shares that vested at prices that varied from $12.99 to $24.17, and sold them for a weighted average price of $44.05. He also sold almost 245,000 shares he already owned at a weighted average price of $44.56, bringing his total down to exactly the 250,000-share threshold that as Intel CEO he must own as of May, as Motley Fool previously reported.

In total, the stock sales brought in more than $39 million, according to the SEC filing, though that total does not include the amount Krzanich paid for his stock options.

Note the date - Oct 30, a full 5 months after Intel was made aware of the exploit.

2) The processors involved are much more far ranging than just computers and servers - what about networked medical devices in hospitals (devices that are notorious for being behind in updated software because the OEMs are and have always been lackadaisical about pushing updates as well as hospital administrators who are just as lackadaisical about applying updates because they simply do not have time / staff to do so). What about other devices, from IoT to connected vehicles to mission critical infrastructure at industries like powergrids?

It is not over-hyped at all. The Media is making a circus out of all this, yes, but the concerns here are real.

Superfly said:

I agree, Intel is good... however, I think, they have been cutting corners to get the performance and now the vulnerabilities are surfacing...

That is the good thing - "Oh, 7.25% performance hit? Well, you can simply by this new processor line that is 10% faster, and you win!"

Layback Bear said:

Superfly you could be correct but I doubt we will ever know that as a fact.

Those kinds of things are kept very secret.

Jack

Class action lawsuits tend to open things like this up - and there are several already being filed.

Here come the lawsuits! Intel sued for processor vulnerabilities - Neowin

Superfly said:

Dear Jack

I am always right.

Yours sincerely,

Superfly.

Thank you John for this site.


Intel CEO sold millions in stock after company was informed of vulnerability, before disclosure - MarketWatch

You would think the SEC would be looking into such a thing.

Jack

https://security-center.intel.com/ad...nguageid=en-fr