Intel security flaw

Message boards : Number crunching : Intel security flaw
Message board moderation

To post messages, you must log in.

Previous · 1 · 2 · 3 · 4 · 5 . . . 7 · Next

AuthorMessage
Keldon Special Project $250 donor

Send message
Joined: 28 Nov 17
Posts: 7
Credit: 26,650,838
RAC: 135,967
Channel Islands
Message 1910516 - Posted: 4 Jan 2018, 15:37:43 UTC

Windows has an update - KB4056892

Check this is installed in Windows Update. Also requires a restart to install.

BIOS updates also coming from Intel via OEMs so check BIOS and firmware update status from Dell, HP etc depending on your machine manufacturer.
ID: 1910516 · Report as offensive
Sirius B Project Donor
Volunteer tester
Avatar

Send message
Joined: 26 Dec 00
Posts: 18956
Credit: 2,645,324
RAC: 2,273
Ireland
Message 1910535 - Posted: 4 Jan 2018, 16:14:40 UTC - in response to Message 1910516.  

Windows has an update - KB4056892
Win 10 only.
ID: 1910535 · Report as offensive
Ghia
Avatar

Send message
Joined: 7 Feb 17
Posts: 179
Credit: 14,937,340
RAC: 19,680
Norway
Message 1910540 - Posted: 4 Jan 2018, 16:26:40 UTC

May be dumb questions, but I don't mind if people see my lack of understanding.. ;-)
I do understand the basics behind these Meltdown and Spectre flaws...a flaw in the separation between kernel and userland.
What I'd like to know is what this actually means :
"Intel chips have been exploited so that an unprivileged, logged-in user can read out kernel data"
"Intel chips have been exploited so that a root user in a guest virtual machine can read out host kernel data"

For example, how easy is it for a hacker to become "an unprivileged, logged-in user". Can any counter-moves be made on this level ?

...Ghia...
Humans may rule the world...but bacteria run it...
ID: 1910540 · Report as offensive
Profile Siran d'Vel'nahr
Volunteer tester
Avatar

Send message
Joined: 23 May 99
Posts: 6244
Credit: 7,474,993
RAC: 69
United States
Message 1910541 - Posted: 4 Jan 2018, 16:26:45 UTC - in response to Message 1910516.  

Windows has an update - KB4056892

Check this is installed in Windows Update. Also requires a restart to install.

BIOS updates also coming from Intel via OEMs so check BIOS and firmware update status from Dell, HP etc depending on your machine manufacturer.

Greetings,

WTF? The above update is for Windows 10 PCs. I searched the catalogue for "2018 Windows 7 x86" and found KB4056897 for Windows 7. I downloaded it.

MUSP tells me: "This update is not applicable to your computer." How can an update FOR my computer, running Windows 7, not be applicable to my computer running Windows 7?

Is this, perhaps, just another bold attempt by Micro$oft to force me to upgrade to Windows 10?

BTW: The description for the file I downloaded was virtually the same as that for KB4056892, with the exception of OS of course.

Siran
CAPT Siran d'Vel'nahr XO
USS Vre'kasht NCC-33187

Windows 10 can be tamed into submission!

Microsoft wants us to "Imagine life without walls"...
I say, "If there are no walls, who needs Windows?"
ID: 1910541 · Report as offensive
Keldon Special Project $250 donor

Send message
Joined: 28 Nov 17
Posts: 7
Credit: 26,650,838
RAC: 135,967
Channel Islands
Message 1910553 - Posted: 4 Jan 2018, 16:58:21 UTC - in response to Message 1910541.  

OK so from what I can see there are at least 45 Windows security updates released today across all supported operating systems.

But while Windows 10 updates seem to work on automatic, albeit with a manual restart, Windows 7 and 8 users have to go searching for the right update and download manually or wait till next Tuesday when they may work automatically.

However, there appear to be issues with the downloads for some systems.

Microsoft did not want to release until next Tuesday at the earliest but may have rushed them out today due to the publicity.
ID: 1910553 · Report as offensive
Profile Siran d'Vel'nahr
Volunteer tester
Avatar

Send message
Joined: 23 May 99
Posts: 6244
Credit: 7,474,993
RAC: 69
United States
Message 1910561 - Posted: 4 Jan 2018, 17:13:26 UTC - in response to Message 1910553.  

OK so from what I can see there are at least 45 Windows security updates released today across all supported operating systems.

But while Windows 10 updates seem to work on automatic, albeit with a manual restart, Windows 7 and 8 users have to go searching for the right update and download manually or wait till next Tuesday when they may work automatically.

However, there appear to be issues with the downloads for some systems.

Microsoft did not want to release until next Tuesday at the earliest but may have rushed them out today due to the publicity.

Hi Keldon,

So basically I should just wait for patch Tuesday and hope for the best. ;)

This was the first time having a problem with one of their .msu files.

At least this PC is up-to-date with the updates since installing Win7 on a new HDD.

Thanks for the response, Keldon! :)

Siran
CAPT Siran d'Vel'nahr XO
USS Vre'kasht NCC-33187

Windows 10 can be tamed into submission!

Microsoft wants us to "Imagine life without walls"...
I say, "If there are no walls, who needs Windows?"
ID: 1910561 · Report as offensive
Profile Bernie Vine
Volunteer moderator
Volunteer tester
Avatar

Send message
Joined: 26 May 99
Posts: 9404
Credit: 57,541,800
RAC: 17,477
United Kingdom
Message 1910562 - Posted: 4 Jan 2018, 17:14:07 UTC

For example, how easy is it for a hacker to become "an unprivileged, logged-in user". Can any counter-moves be made on this level ?


I would like to know this as well.
ID: 1910562 · Report as offensive
Tutankhamon
Volunteer tester
Avatar

Send message
Joined: 1 Nov 08
Posts: 7216
Credit: 44,938,804
RAC: 10,599
Sweden
Message 1910570 - Posted: 4 Jan 2018, 17:24:21 UTC
Last modified: 4 Jan 2018, 17:25:36 UTC

Oh come on now. What's the chance/risk, that any normal home user should be hit by the effect of these flaws?
Almost Zero for the sake of Dog. Don't get all worked up about this.

If there is a performance loss when applying any of these patches, I for sure will not apply them.
I'll wait a couple of weeks/months to read about all the screaming and shouting from people who find that their system
is up to 30% slower after applying these patches. Hehe, the noise from all the RAC chasers here. :-)

Geeze, what a ruckus for something that a normal home user really shouldn't worry a bit about.
ID: 1910570 · Report as offensive
Profile Jeff Buck Special Project $250 donor
Volunteer tester

Send message
Joined: 11 Feb 00
Posts: 1441
Credit: 148,764,870
RAC: 0
United States
Message 1910572 - Posted: 4 Jan 2018, 17:26:29 UTC

This PC World article has a pretty extensive explanation of what all is known so far.

Meltdown and Spectre FAQ: Fix for Intel CPU flaws could slow down PCs and Macs
ID: 1910572 · Report as offensive
Profile Ghan-buri-Ghan Mike Project Donor

Send message
Joined: 27 Dec 15
Posts: 89
Credit: 33,269,293
RAC: 77,875
United States
Message 1910573 - Posted: 4 Jan 2018, 17:32:56 UTC

I'm old enough to remember the Pentium 60 processor flaw (pre-SETI). As long as you weren't running nuclear weapon yield simulations, the hue and cry far outweighed the impact.
I too will wait and see.
ID: 1910573 · Report as offensive
Profile Keith Myers Special Project $250 donor
Volunteer tester
Avatar

Send message
Joined: 29 Apr 01
Posts: 4855
Credit: 313,264,806
RAC: 670,245
United States
Message 1910579 - Posted: 4 Jan 2018, 17:49:16 UTC - in response to Message 1910562.  

Since the mechanics of the exploit have not been publicly revealed, for good reason, we can only guess how it is achieved. The discussion I saw on a live feed last night made it seem to be VERY difficult. One thing that caught my attention is that memory spaces are already being randomized when the kernel switches in and out from kernel space to user space. So trying to find supposed leftover passwords in memory space would be VERY difficult because you would have to know where to look in the first place.

An no, there is nothing you can do on your end other than to wait for the OS patches and apply them when they come out.
Seti@Home classic workunits:20,676 CPU time:74,226 hours
ID: 1910579 · Report as offensive
Profile Keith Myers Special Project $250 donor
Volunteer tester
Avatar

Send message
Joined: 29 Apr 01
Posts: 4855
Credit: 313,264,806
RAC: 670,245
United States
Message 1910581 - Posted: 4 Jan 2018, 18:04:39 UTC - in response to Message 1910570.  

Oh come on now. What's the chance/risk, that any normal home user should be hit by the effect of these flaws?
Almost Zero for the sake of Dog. Don't get all worked up about this.

If there is a performance loss when applying any of these patches, I for sure will not apply them.
I'll wait a couple of weeks/months to read about all the screaming and shouting from people who find that their system
is up to 30% slower after applying these patches. Hehe, the noise from all the RAC chasers here. :-)

Geeze, what a ruckus for something that a normal home user really shouldn't worry a bit about.

For the type of things that most people commonly use a computer for, almost no detectable performance loss with the security patches.
Seti@Home classic workunits:20,676 CPU time:74,226 hours
ID: 1910581 · Report as offensive
Tutankhamon
Volunteer tester
Avatar

Send message
Joined: 1 Nov 08
Posts: 7216
Credit: 44,938,804
RAC: 10,599
Sweden
Message 1910582 - Posted: 4 Jan 2018, 18:07:48 UTC - in response to Message 1910581.  

Oh come on now. What's the chance/risk, that any normal home user should be hit by the effect of these flaws?
Almost Zero for the sake of Dog. Don't get all worked up about this.

If there is a performance loss when applying any of these patches, I for sure will not apply them.
I'll wait a couple of weeks/months to read about all the screaming and shouting from people who find that their system
is up to 30% slower after applying these patches. Hehe, the noise from all the RAC chasers here. :-)

Geeze, what a ruckus for something that a normal home user really shouldn't worry a bit about.

For the type of things that most people commonly use a computer for, almost no detectable performance loss with the security patches.

Ah well, let's see how if effects crunching. I'm sure those here who will apply the patch, will tell us :-)
ID: 1910582 · Report as offensive
Ghia
Avatar

Send message
Joined: 7 Feb 17
Posts: 179
Credit: 14,937,340
RAC: 19,680
Norway
Message 1910585 - Posted: 4 Jan 2018, 18:11:26 UTC

I have applied the patch for my Win7 x64 system (KB4056897). Will be interesting to monitor if there is any impact to S@H.

Another funny thing MS came up with : "If you have not been offered the security update, you may be running incompatible anti-virus software and you should follow up with your software vendor. To help protect our customers from blue screens and unknown scenarios, Microsoft is requiring all anti-virus software vendors to attest to the compatibility of their applications by setting a Windows registry key."

As far as I understand it, this will be the case for all security updates from MS as of Jan.3.
Humans may rule the world...but bacteria run it...
ID: 1910585 · Report as offensive
bluestar

Send message
Joined: 5 Sep 12
Posts: 2692
Credit: 1,939,788
RAC: 0
Message 1910596 - Posted: 4 Jan 2018, 18:49:08 UTC
Last modified: 4 Jan 2018, 19:30:14 UTC

Come on, trust both Microsoft and Norton, if perhaps not any else.

As an example, we could make it both Home$Group User, or Update$User here, if not perhaps any S-1-2-3-4745 either, for that of the Registry,
but if a user could be hacking a system, either that of malicious code for that of a Trojan for doing so, or perhaps doing it directly using a port on a given computer.

This because there always should be a difference between that of technology itself, and also its use, and next that of a malicious user which could be carrying out a possible attack.

At least so for the worst things, except for perhaps others as well, which could be below, or further down in the queue.

Except for that, also a couple of other things more left to be watching right now.
ID: 1910596 · Report as offensive
Profile moi

Send message
Joined: 25 Dec 14
Posts: 11
Credit: 433,313
RAC: 7
France
Message 1910598 - Posted: 4 Jan 2018, 19:14:26 UTC - in response to Message 1910596.  

Why i would do this shit in my intel linux pc for SETI...

I will not apply this ...
ID: 1910598 · Report as offensive
Profile tullio Project Donor
Volunteer moderator
Volunteer tester

Send message
Joined: 9 Apr 04
Posts: 6814
Credit: 1,995,833
RAC: 484
Italy
Message 1910601 - Posted: 4 Jan 2018, 19:25:23 UTC

I am using only AMD Cpus both on Windows 10 and SuSE Linux. Should I apply the patches too? Microsoft sends me an upgrade every month, and I have no way to refuse it. I can refuse to install Linux updates, but so forth they have done no damages. I am running 4 BOINC projects using also nVidia graphic boards and/or VirtualBox.
Tullio
ID: 1910601 · Report as offensive
Profile moi

Send message
Joined: 25 Dec 14
Posts: 11
Credit: 433,313
RAC: 7
France
Message 1910604 - Posted: 4 Jan 2018, 19:29:28 UTC - in response to Message 1910601.  
Last modified: 4 Jan 2018, 20:29:17 UTC

tullio "I have no way to refuse it"

All windows can.

Windows update ==> Download but let me choose or disable.


Read this about meltdown https://meltdownattack.com/meltdown.pdf
ID: 1910604 · Report as offensive
Profile Mike Special Project $75 donor
Volunteer tester
Avatar

Send message
Joined: 17 Feb 01
Posts: 31204
Credit: 64,588,446
RAC: 20,834
Germany
Message 1910650 - Posted: 4 Jan 2018, 21:19:27 UTC - in response to Message 1910601.  

I am using only AMD Cpus both on Windows 10 and SuSE Linux. Should I apply the patches too? Microsoft sends me an upgrade every month, and I have no way to refuse it. I can refuse to install Linux updates, but so forth they have done no damages. I am running 4 BOINC projects using also nVidia graphic boards and/or VirtualBox.
Tullio


No, don`t do those updates.
With each crime and every kindness we birth our future.
ID: 1910650 · Report as offensive
Profile Bernie Vine
Volunteer moderator
Volunteer tester
Avatar

Send message
Joined: 26 May 99
Posts: 9404
Credit: 57,541,800
RAC: 17,477
United Kingdom
Message 1910655 - Posted: 4 Jan 2018, 21:26:02 UTC - in response to Message 1910650.  

I am using only AMD Cpus both on Windows 10 and SuSE Linux. Should I apply the patches too? Microsoft sends me an upgrade every month, and I have no way to refuse it. I can refuse to install Linux updates, but so forth they have done no damages. I am running 4 BOINC projects using also nVidia graphic boards and/or VirtualBox.
Tullio


No, don`t do those updates.

Not sure the Windows Home edition can refuse, if so I don't know how.
ID: 1910655 · Report as offensive
Previous · 1 · 2 · 3 · 4 · 5 . . . 7 · Next

Message boards : Number crunching : Intel security flaw


 
©2018 University of California
 
SETI@home and Astropulse are funded by grants from the National Science Foundation, NASA, and donations from SETI@home volunteers. AstroPulse is funded in part by the NSF through grant AST-0307956.