CacheOut is the Latest Speculative Execution Attack for Intel Processors

ManofGod

[H]F Junkie
Joined
Oct 4, 2007
Messages
11,642
Of course, a record setting quarters make this irrelevant, right? /s ;)
 

vegeta535

2[H]4U
Joined
Jul 19, 2013
Messages
3,844
90% of the public pay more attention to the Kardashian (sp?) family and their daily habits than this stuff about things they do not understand. They just want a cheap PC for when they are charging their phones
That is the sad truth. The thing that really gets me are people like the Kardashians represent everything you suppose to hate. Rich "beautiful" people. The 1%. Yet they have to know everything about them.
 

ThatITGuy

Limp Gawd
Joined
May 5, 2017
Messages
382
That is the sad truth. The thing that really gets me are people like the Kardashians represent everything you suppose to hate. Rich "beautiful" people. The 1%. Yet they have to know everything about them.
Likely the same reason people spend hours watching people play a game instead of playing it themselves, why they spend hours on their phones "liking" pictures or posts by other people instead of going out and actually living life themselves.
 

GoodBoy

[H]ard|Gawd
Joined
Nov 29, 2004
Messages
1,751
"Description: Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access."

Only affects some Whiskey Lake, Sylake, Kaby Lake, and Coffee Lake. Interestingly, the 10xxx parts are not affected (those are Cascade Lake), nor are older cpu's like Haswell.

Doesn't sound like any perf hit for fix.
 

Lakados

[H]ard|Gawd
Joined
Feb 3, 2014
Messages
2,036
I’m not surprised, this architecture is what a decade old at this stage? It has to comprise at least 90% of all the desktop/server CPU’s on the planet that is a lot of eyes from a lot of people, I’ll intent or otherwise trying to pick it apart.
 

blandead

Limp Gawd
Joined
Nov 6, 2010
Messages
272
You also have to take into account any performance hit from additional software patches. For instance Chrome could have a different fix, vmware, Microsoft, sql server.
 

Nobu

2[H]4U
Joined
Jun 7, 2007
Messages
3,840
Is there a world record for the number of vulnerabilities for a CPU and if so are they trying for a world record? Or are they already holding the record and it keeps going up?
I want to say there were probably close to as many vulnerabilities before as there are now being discovered, just they weren't being reported as openly as they are now.

...I want to say that, but I really have nothing to back that statement. I do know there are databases and bugzillas full of errata and vulnerability reports (for all kinds of hardware), but I don't have any statistics to go on.
 

Mazzspeed

2[H]4U
Joined
Dec 27, 2017
Messages
2,598
I’m not surprised, this architecture is what a decade old at this stage? It has to comprise at least 90% of all the desktop/server CPU’s on the planet that is a lot of eyes from a lot of people, I’ll intent or otherwise trying to pick it apart.
Funnily enough the older Intel architectures aren't affected. My dual Westmere-EP Xeon's aren't and they handle everything I throw at them just fine.
 

polonyc2

Fully [H]
Joined
Oct 25, 2004
Messages
17,366
I'm not replacing my LGA1366 based machine until I absolutely have to, and right now I absolutely don't have to - It even games adequately. ;)
yup same here...I game at 1440p so most everything is GPU-limited...I've upgraded my GPU multiple times in the time I've had my i7 980X
 

Red Falcon

[H]F Junkie
Joined
May 7, 2007
Messages
10,266
90% of the public pay more attention to the Kardashian (sp?) family and their daily habits than this stuff about things they do not understand. They just want a cheap PC for when they are charging their phones
Hi-tech, low-life - the dark cyberpunk future is here! :borg:


Also, the firmware/BIOS/UEFI updates never end, but what's worse, is if we stop receiving them...
This goes back as far as Sandy Bridge; basically, every Intel CPU made in the 2010s is either security-hole Swiss cheese, or performance-drained at this point.
 
Last edited:
Top