HP reportedly starting to release BIOS fixes for Meltdown and Spectre flaws

Companies are in disagreement over the precise impact of the workarounds required to protect systems from the Meltdown and Spectre speculative execution flaws revealed earlier this month, with some pointing to a doubling of CPU time in their workloads while others claim to have seen 'negligible impact'.

Fears that the fixes would limit the performance of processors have largely been resolves. The flaw wasn't reported until June last year, despite Intel knowing about it since before then. While patches are on the way, the performance hit from these patches could be as high as twenty or thirty percent in some cases.

It's possible that Windows' update feature already automatically downloaded and installed the patch, but you may need to restart your computer to finalize the patch.

Shares in Intel, the world's biggest maker of the computer processing units that are affected, fell by as much as 5pc last week after the bugs emerged. Meltdown, a vulnerability that affects devices using Intel CPUs, was reported by Jann Horn of Google's Project Zero, Werner Haas and Thomas Prescher of Cyberus Technology and Daniel Gruss and his colleagues at Graz University of Technology. Spectre affects chips made by Intel, ARM, AMD, and Qualcomm. Kim Forrest, senior equity research analyst at Fort Pitt Capital Group told The Guardian.

According to Meyer, the intelligence updates being issued will allow ThreatModeler Software customers to determine where their organization is sensitive to Meltdown and Spectre, and gives visibility into these threats to quantify the downstream impact across their entire IT environment.

Spectre, designated as CVE-2017-5753 and CVE-2017-5715, can allow attackers to steal information leaked in the kernel/cached files or data stored in the memory of running programs, such as credentials (passwords, login keys, etc.).

"It is important to note that it is dependent on malware running locally which means it's imperative for users to practice good security hygiene by keeping their software up-to-date and avoid suspicious links or downloads", the company states. These updates from your favorite manufacturers should come in thick and fast in the next few days and weeks. Spectre is more difficult to exploit but also to mitigate.

"I can't say that we designed the system that way because we expected something as crazy as this to happen, but I can say that we did design it this way specially because syscalls were already too slow". These vulnerabilities were found in the process which most modern processors use to optimize the performance of their devices. ARM has also said it was working with AMD and Intel on security fixes. "First, the vulnerabilities expose affected devices to kernel attacks, which is very serious and could undermine any security you already have in place". I am certain we will work with customers to help them even as their questions and needs extend outside the limitations of the Scale HC3 stack itself. Intel's official statement is that the extent of performance degradation will depend on the workload and that the average user will not be significantly impacted.

(Derechos de autor © 2015. Todos los derechos reservados.)
 
Recomendado

Apple starts $29 out-of-warranty battery replacements immediately
Alibaba: On its way to $1 trillion? But the program offering $29 battery replacement is now being launched sooner than expected. However, it cautioned that supplies of replacement batteries might be limited at the start of this program.

Pep: Man City to have 'internal meetings' about January Sanchez move
It's really difficult but Alexis Sanchez is the one that can probably come in and give a new fresh inspiration to the squad. Fabian Delph and John Stones both return whilst captain Vincent Kompany continues his spell on the sidelines.

12 people killed amid nationwide protests — Iranian state TV
Whether that's because of prior coordination or simply because of the contagion effect of information technology, we don't know. In the 2009 protests , known as the Green Revolution, Barack Obama was silent during the first few days they occurred.

Macron Urges EU to Stress Iran Human Rights, Keep Nuclear Accord
In September 1978, he flew by helicopter over the capital, to see about half a million people denouncing him in the streets. Until that point, all were victims of the police, which is under the control of the Ministry of the Interior.

Ronaldo wins another Globe award
Zinedine Zidane believes 'things are going well' at Real Madrid after collecting another 'Coach of the Year' award in Dubai. Hector Cuper was named as the 'Best Arab National Team Coach' for guiding Egypt to the Russia World Cup finals.

Confirmed: Everton vs Manchester United line ups
The French star ran the show for the Red Devils , providing both assists for the team's two goals vs Sam Allardyce's side. Everton will monitor James McCarthy and Yannick Bolasie before deciding whether to start the duo.

EPL: Kane beats Shearer record for most goals
At the full-time whistle Kane was just four behind the imitable Argentine. 7 Got his seventh hat-trick of the year on Saturday. Kane put his incredible haul down to advances in sports science and the quality of his team-mates who are now owed a dinner.

Blazers' Damian Lillard (hamstring) planning on returning to action on Tuesday
A technical foul was called on Portland's Shabazz Napier early in the second quarter after he elbowed Atlanta's Isaiah Taylor . Nurkic finished with 21 points and 12 rebounds, and Portland won its fourth straight against the Sixers at the Moda Center.

Processor exploit is 'near-zero' risk to its chips — AMD
The Cupertino brand also launched iOS 11.2 and tvOS 11.2 alongside it and assured users that the Apple Watch isn't affected. No known malware is currently exploiting the vulnerability, which is why companies are scrambling to get the fix published.

Football expert, McGarry speaks on Zidane's sack, likely replacement — Real Madrid
But how did Ernesto Valverde outwit? In the second half Luis Suarez scored his 10th goal of the season to fire Barca ahead. Madrid coach Zinedine Zidane, meanwhile, came in for some criticism for his team selection.

Mohamed Salah stars in Liverpool comeback; Chelsea thrash Stoke — EPL
He's made an excellent start to life back in English football too, with 23 goals in his first 29 games for the Merseyside outfit. However, Salah's contribution will leave even more onlookers wondering just how he was secured at such a ridiculous cost.

Watch the Meltdown CPU exploit in action
Yesterday, we told you about a pair of exploits called Meltdown and Spectre . "That is the actual heart of the computer". Analysts are bullish: More than half call Intel a "buy", and just one in eight holds a negative outlook for the stock.

Intel is rising after saying it's fixed the 'Spectre' CPU flaw
The company also said a performance hit from a future software update "should not be significant and will be mitigated over time". Intel is focusing attention on chips that have been produced in the last five years - which is understandable to a degree.

K-State's Rally Falls Short at No. 18/18 Texas Tech, 74-58
Who's the best pro prospect that Kansas has right now? On those attempts TCU shoots 65.4% (70th in the country). From the Kansas perspective, this might be the worst team Bill Self has had during his time in Lawrence.

Novak Djokovic withdraws from exhibition, unsure of Australian Open status
Thiem, meanwhile, is eagerly waiting to see how Djokovic, a 12-time Grand Slam winner, plays on return. "I think it is great". I did a good pre-season and did some exhibition matches in Thailand and I am looking forward to the new season".


Mas noticias

Noticias
Mas noticias