13 Enero, 2018
The full details of the patch were disclosed on the tech giant's official website, but they seem to remain determined to assure their fans that at least for their GPUs, Nvidia has managed to make their device invulnerable and immune to things like Meltdown and Spectre.
AMD's shares have gained nearly 20 percent since the flaws were made public on Jan. 3 as investors speculated that it could wrest market share from Intel, which is most exposed to the flaws because it is vulnerable to all three variants. We have defined additional steps through a combination of processor microcode updates and OS patches that we will make available to AMD customers and partners to further mitigate the threat. However, fix for the second variant of Spectre will bring more significant slowdowns and the users would notice a performance decrease in their systems. This is why you want to be careful to evaluate the risk of untrusted code for each Windows Server instance, and balance the security versus performance tradeoff for your environment. This attack allows a program to access the memory, and thus also the secrets, of other programs and the operating system.
The flaws affect virtually all computing devices running on chips manufactured by Intel, AMD and ARM, although the worst - called Meltdown - largely just affects Intel. A patch for the first variant of Spectre (CVE-2017-5753) is included in today's update. Many of these processors are central to storage systems.
Giving yourself "maximum flexibility" means it will be easier to respond to future flaw discoveries, Segars said. Spanning, while already having a robust patching process, will be adding an out-of-band cycle to address these vulnerabilities.
Do the fixes have side effects? . In its haste, however, it appears that Microsoft released a series of updates for Windows that could break AMD systems. Office, Windows and Edge are functioning fine after installing the latest Patch Tuesday update. "The CPU is a Core i5-3570K using built-in graphics", a user stated on Ubuntu's community forum.
He said that regaining customer trust is something everyone in the industry will be striving for, and that continued collaboration will be key to making it happen. These vulnerabilities have the potential to leave this information exposed if exploited correctly.