Microsoft, Intel, And Google Discloses Another Spectre-like CPU Flaw: Cybersecurity researchers have found a new security flaw that affects a broad swath of modern computing chips and is related to the Spectre and Meltdown chip flaws that emerged in January.
Microsoft, Intel, And Google Discloses Another Spectre-like CPU Flaw
The newest chip problem, known as Speculative Store Bypass or Variant 4 because it is in the same family as the original group of flaws, was disclosed by security researchers at Microsoft Corp and Alphabet Inc’s Google on 21st May.
Though the flaw affects many chips from Intel Corp, Advanced Micro Devices Inc and Softbank Group’s ARM Holdings, researchers described the risks as low, partly because of web browser patches already issued earlier this year to address Spectre.
The Meltdown and Spectre flaws, which emerged in January, can allow passwords and other sensitive data on chips to read.
The flaws result from the way computers try to guess what users are likely to do; next, a process is called speculative execution.
When the flaws emerged in January, researchers warned that they were likely to find new variants of Spectre in the future.
Earlier this month, German computer science magazine c’t reported that the next generation of flaws had been found in Intel’s chips and was likely to be disclosed this month.
Intel declined to comment on whether 21st May announcement was relating to the German magazine’s story.
In its research findings, Microsoft said that patches issued for standard web browsers earlier this year significantly increased the difficulty of attacking with the newly discovered flaw.
Chips from Intel, AMD, and ARM all have patches available, either directly from the makers or through software suppliers such as Microsoft.
Intel said it expects a performance slowdown of between 2 percent and 8 percent from the patches, and ARM said it expects a slowdown of between 1 percent and 2 percent.
However, Intel said that because of the low risk of a real-world attack, it would ship its patches turned off by default, giving users the choice whether to turn them on.
AMD also advised leaving the patches turned off due to the difficulty of carrying out an attack.
The security problems do not appear to have impacted chipmakers’ stock prices. Intel shares are up nearly 16 percent to since the start of the year to $54.32, and AMD shares are up 18.3 percent to $12.99 since the beginning of the year.
So, these are the points to describe on the Microsoft, Intel, and Google discloses another Spectre-like CPU flaw.
On the go through of the Article, comment your viewpoints.