您当前的位置是:  首页 > technology > Corporate communications > technology > Unified Communications and Collaboration > Technical dynamics >
  Home >technology > Corporate communications > technology > Unified Communications and Collaboration > Technical dynamics > EquiinetChina: Intel CPU Now Has Eight New Vulnerabilities

EquiinetChina: Intel CPU Now Has Eight New Vulnerabilities

2018-05-07 10:12:46 Author: Source:CTI ForumComment:0  Click:


An article in a local German computer magazine Thursday said that researchers have discovered eight new vulnerabilities in the CPU (central processing unit) - similar to the ones exposed by Meltdown and Spectre in January.
The magazine’s article entitled “c’t” stated that it was informed that Intel plans to correct these loopholes. Some of the ARM-designed chips may also have these loopholes. Whether or not AMD’s CPU is affected is still being confirmed.
Meltdown and Spectre vulnerabilities allow hackers to bypass hardware security measures or trick applications into divulging secret information and stealing content from a computer's CPU.
“c’t” did not disclose its source of information, because researchers need to comply with the so-called principle of responsible disclosure. They will first notify the relevant companies and disclose the vulnerability information to the public after the patch is released.
The magazine said that Google Project Zero, one of several agencies that exposed Meltdown and Spectre in January, found one of the loopholes, and according to its rules and regulations, it could release relevant information on May 7.
Today's regular trading, Intel's share price slightly fell to 52.28 US dollars, consistent with the Nasdaq Composite Index. Intel did not comment on the CPU vulnerability reported by c't.
In a statement posted on its website, Intel stated that it has been working closely with customers, partners, other chip vendors, and researchers to solve the discovered problems. "We believe in the value of mutual disclosure of vulnerability information, We will share more details after we release the patch software."
AMD said it has not yet seen relevant media reports and is studying the issue. Google and ARM did not comment on this.
"c't" did not disclose the details of the new vulnerability. When Spectre and Meltdown were exposed, the researchers stated that more similar loopholes may be discovered in the future and that they will also need to be repaired.
The hardware security vendor Eclypsium CEO and former Intel security researcher Yuriy Bulygin said, "Considering the situation of Meltdown and Spectre, we should expect to have a painful long-term update cycle in the future and may even have performance. And stability issues. Hope Meltdown and Spectre can make complex hardware bug fixes process improvements."
Brekin said that although there is no evidence that Spectre or Meltdown was used by hackers to launch attacks, similar attacks have “became a new hot research field and malicious hackers may have already invested in such attacks”.
Equiinet's mission: to help Chinese SMEs grow!
Www.equiinet.cn
Www.equiinet.com
Www.equiinet.co.uk
We would like to share and bring you harvest every time!
If you feel good, take it away :)
[Disclaimer] This article only represents the author's own opinion and has nothing to do with the CTI Forum. The CTI Forum maintains its neutrality in the presentation of statements and opinions, and does not provide any express or implied warranty for the accuracy, reliability or completeness of the contents contained therein. Readers are for reference only, and please bear full responsibility for yourself.

Related Reading:

Topics