Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 20 Aug 2018, 13:23
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Intel releasing new patches for Meltdown and Spectre
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [3 Posts]  
Author Message
prehistoric


Joined: 23 Oct 2007
Posts: 1734

PostPosted: Mon 22 Jan 2018, 20:31    Post subject:  Intel releasing new patches for Meltdown and Spectre  

Some Intel machines experienced an increased frequency of unintended reboots after the previous patch. Now, Intel says it understands the cause, and will release new patches shortly. They do not recommend applying the previous patches.
Back to top
View user's profile Send private message 
rufwoof

Joined: 24 Feb 2014
Posts: 2435

PostPosted: Mon 22 Jan 2018, 21:40    Post subject:  

Thanks Prehistoric.

Considering that the vulnerability exploit potential is pretty limited (reading some memory space if you can hack your way in), seems like fixes that have bricked some systems and other problems have been a much greater risk.
Back to top
View user's profile Send private message 
prehistoric


Joined: 23 Oct 2007
Posts: 1734

PostPosted: Mon 29 Jan 2018, 14:59    Post subject:  

We aren't done with the problem by a long shot. As Linus noted, in his inimitable style, their explanation of what they were doing, and trying to sell fixes as added optional security features, was f*ing insane.
Microsoft is now undoing the damage Intel did to Windows systems with the earlier patches.

Spectre is a whole nuther can of worms. It applies to just about every machine that runs 64-bit x86 code and has speculative execution. The problem with having processes that run untrusted code isn't just a problem for cloud providers, it also impacts people who run browsers that run untested code off the Internet. What we have done so far are mitigations, not a real fix.

Predictably, Intel will use this to sell new processors, and Microsoft will use this to force people to upgrade to W10, where built-in telemetry will boost M$ cashflow from selling information for targeted advertising. If customers had any rights prior to this, these will disappear in new licensing and terms of service.

There are much wider implications to consider.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [3 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0417s ][ Queries: 14 (0.0087s) ][ GZIP on ]