Intel bug incoming? Meltdown and Spectre exploits

Rroff · 27 Jan 2018 at 22:19

Data leaks could involve credentials though that could give a hacker access requiring backups due to having to sanitise systems or malicious deletion, etc.

PowerPie5000 · 28 Jan 2018 at 11:52

CAT-THE-FIFTH said:
My current IB Core i7 is becoming a limitation in some games - the current Ryzen won't really be much of an upgrade in those games,and Intel has security issues,plus RAM is silly priced too(although I have 16GB of 2400MHZ DDR4 I got for £56). So looks like I will be waiting longer for something like Zen 2 at this point.

I'm currently waiting on a new build... I either go now with Ryzen now, or wait and see if the next gen of Zen chips have actual hardware fixes against Spectre. I've seen plenty of benchmarks when it comes to the Intel "fixes", but not seen any benchmarks when it comes to patched AMD chips.

CAT-THE-FIFTH · 28 Jan 2018 at 21:48

PowerPie5000 said:
I'm currently waiting on a new build... I either go now with Ryzen now, or wait and see if the next gen of Zen chips have actual hardware fixes against Spectre. I've seen plenty of benchmarks when it comes to the Intel "fixes", but not seen any benchmarks when it comes to patched AMD chips.

I think computerbase.de or PCGH(can't remember which),did some tests with both IIRC??

LoadsaMoney · 29 Jan 2018 at 17:49

Microsoft releases update to reverse problematic Spectre patch

http://www.guru3d.com/news_story/microsoft_releases_update_to_reverse_problematic_spectre_patch.html

IT Troll · 30 Jan 2018 at 16:20

The new Microsoft update just disables the mitigation which relies on the microcode you shouldn't install or don't yet have. So MS just covering Intel who were too busy counting their higher than expected earnings to fix this properly.

Quite a good up-to-date overview video from Gamers Nexus.
https://www.youtube.com/watch?v=Y3j0C-KKG9E

Mercutio · 3 Feb 2018 at 02:13

Random question: Would running my browser in a virtual box linux OS be a relatively safe way to mitigate pretty much everything for a short while? (Obviously browser passwords are still at risk I guess?)

IT Troll · 3 Feb 2018 at 08:57

Most browsers have received updates which include their own mitigation measures. Firefox and Chrome also have a site isolation feature which can provide further protection if enabled.

Making sure you are running one of these is the best you can do at the moment to mitigate browser-based attacks.

40Four · 4 Feb 2018 at 00:02

String said:
I got all green, except this:

I take it this is because I'm on vulnerable BIOS? Last BIOS available from Asrock is from September 2016.

As long as you have an AMI bios you can use UBU to update the modules, including the microcode.

See here, https://www.win-raid.com/t154f16-Tool-Guide-News-quot-UEFI-BIOS-Updater-quot-UBU.html

illuz · 4 Feb 2018 at 16:19

I was going to finally upgrade my 3930k and then this drops. Blargh.

Hopefully the next round of Intel chips are fixed.

Skyrover · 4 Feb 2018 at 18:24

illuz said:
I was going to finally upgrade my 3930k and then this drops. Blargh.

Hopefully the next round of Intel chips are fixed.

Or you could go AMD?

Tee Hee Johnson · 4 Feb 2018 at 21:11

Skyrover said:
Or you could go AMD?

Ewww

CAT-THE-FIFTH · 4 Feb 2018 at 21:16

Tee Hee Johnson said:
Ewww

I hope you don't ever fly on a commercial airliner. You might not like what chips they use!

Koogle · 5 Feb 2018 at 00:06

Since intel has the worse of the security hardware problems, have they even bothered discounting any of their cpu lineup since this stuff came out? From the looks of it they seem to think consumers are idiots and will still pay up.. for the upgrade path..and worse the best you get is 6core 8700k as the only semi reasonable competitive price...8+ core just goes into rip off land... for me that is kinda pathetic for the investment cost when you factor in the higher mobo prices and insane ram prices and the security problems.

I've been looking at upgrading and its only the 8700k that stands out.. but not by much when I could save at least £100 if not more and go with ryzen for the 3 cpu+mobo+ram parts I need.. why would I bother spending more for the intel setup when 1) it has the worst vulnerabilities 2) the patches don't even work without other issues (dataloss, restarts, performance reduction in certain workloads), 3) windows 10 sucks and frankly the patches are only semi working on that from what I've heard.

At this point I am kinda writing intel off completely as monopoly that has fleeced consumers for too long, and even if I don't get the AMD setup right now (because the future Zen+ stuff coming out has me kinda thinking about just waiting some more anyway) it is still definitely looking like a future AMD setup and jumping ship from intel.

DragonQ · 8 Feb 2018 at 08:29

So Dell were finally planning to release a BIOS update for my laptop that would fix SA-00086 (latest Intel ME security flaw) yesterday, but since they had also bundled in updated microcode for Spectre 2, they've had to suspend the release until Intel fix the reboot/stability issues with those updates.

Sigh...

IT Troll · 8 Feb 2018 at 11:06

Intel has released new production microcode for Skylake platforms to OEMs this week. Other platforms due in the coming days. Hopefully they tested it this time.

fastboy · 8 Feb 2018 at 13:34

touch wood not had 1 issues with the skylake bios microcode for my GB z170 board,been updated a couple of weeks now.

LoadsaMoney · 10 Feb 2018 at 18:08

Intel releases stable Spectre updates for Skylake

http://www.guru3d.com/news_story/intel_releases_stable_spectre_updates_for_skylake.html

pete910 · 10 Feb 2018 at 20:19

It looks like others new about the bug in 2016

IT Troll · 10 Feb 2018 at 23:45

LoadsaMoney said:
Intel releases stable Spectre updates for Skylake

http://www.guru3d.com/news_story/intel_releases_stable_spectre_updates_for_skylake.html

I said that two days/posts ago.

LoadsaMoney · 11 Feb 2018 at 15:50

IT Troll said:
I said that two days/posts ago.

Ahh so you did.

*heads off to specsavers