Intel's processor chip found a fundamental design flaw, the necessity of updating to each OS


bySh4 rp - i

A design flaw was found in the Intel processors manufactured over the past decade. In the worst case, there is a possibility that contents of the kernel memory storing the password, login key, cache file, etc. are read may be read, but due to a defect existing in the Intel x86 hardware, it is not corresponded by the microcode update It is possible that each OS fixes at the software level or it is necessary to introduce a new processor without bugs.

'Kernel memory leaking' Intel processor design flaw forces Linux, Windows redesign • The Register
https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/


This bug can recognize protected kernel memory to some extent even in ordinary user programs including database applications and JavaScript like web browser.

Usually, it is hidden from user processes and user programs because kernel memory stores information that should be kept confidential, such as passwords, login keys, cached files from disk, , There is a possibility that information may be stolen by JavaScript running on the browser or malware running on the shared public cloud server.

"python sweetness"The impact will be on all modern CPU architectures that implements virtual memory and hardware changes will be required to completely solve it.

python sweetness - The mysterious case of the Linux Page Table ...
http://pythonsweetness.tumblr.com/post/169166980422/the-mysterious-case-of-the-linux-page-table


One way to solve this problem is to isolate the kernel memory completely from the user process using kernel, page table isolation, but this is the way PCs with Intel processors are running Speed ​​will fall.

Regarding this matter, the Register says he could not receive comments from Intel spokeswoman.

· Continued
The root of the vulnerability problem inherent in Intel CPU is deeply pointed out that "All processors have problems that can not achieve both safety and high speed" - GIGAZINE

in Hardware,   Security, Posted by logc_nt