Info Meltdown and Spectre Vulnerabilities Information

Page 21 - Seeking answers? Join the Tom's Hardware community: where nearly two million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
Status
Not open for further replies.
EmilyLewis

EmilyLewis

Aug 1, 2019
4
1
15
appinventiv.com
Spectre and Meltdown are uniquely dangerous security vulnerabilities that allow malicious actors to bypass system security protections present in nearly every recent device with a CPU-not just PCs, servers, and smartphones, but also Internet of Things (IoT) devices like routers and smart TVs. By leveraging the duo, it is possible to read protected system memory, gaining access to passwords, encryption keys, and other sensitive information.
 
RLarcosPES2

RLarcosPES2

Distinguished
Oct 10, 2014
164
18
18,615
Sorry if this has been answered before, but is the Core i7-4790k vullnerable?

Also if it is, has it been patched? If yes how can I check if I am patched?

Thank you!
 
Eximo

Eximo

Titan
Ambassador
May 27, 2010
25,811
4,152
139,340
RLarcosPES2 said:
Sorry if this has been answered before, but is the Core i7-4790k vullnerable?

Also if it is, has it been patched? If yes how can I check if I am patched?

Thank you!
Click to expand...

The answer is yes, basically all Intel CPUs have vulnerabilities.

Microsoft will have pushed out what they could through Windows. On your end you have to update your BIOS to the latest, read the patch/release notes for the versions available.

They didn't always go back and fix the older CPUs, so there might not be anything you can do.
 
  • Like
Reactions: RLarcosPES2
RLarcosPES2

RLarcosPES2

Distinguished
Oct 10, 2014
164
18
18,615
Eximo said:
The answer is yes, basically all Intel CPUs have vulnerabilities.

Microsoft will have pushed out what they could through Windows. On your end you have to update your BIOS to the latest, read the patch/release notes for the versions available.

They didn't always go back and fix the older CPUs, so there might not be anything you can do.
Click to expand...
Do you know the exact update for this? You know KB000000 and some numbers.

Also my motherboard doesn't have a recent BIOS update. How can I protect myself from this vullnerability? (Apart from changing the hardware as I can't afford it at the moment)
 
Eximo

Eximo

Titan
Ambassador
May 27, 2010
25,811
4,152
139,340
RLarcosPES2 said:
Do you know the exact update for this? You know KB000000 and some numbers.

Also my motherboard doesn't have a recent BIOS update. How can I protect myself from this vullnerability? (Apart from changing the hardware as I can't afford it at the moment)
Click to expand...

It is way more than one as they keep finding variants of this problem and doing what software changes are possible to mitigate it. If you have kept Windows up to date that is as good as it is going to get. You can also disable hyperthreading if you want it to be more secure.
 
  • Like
Reactions: RLarcosPES2
Eximo

Eximo

Titan
Ambassador
May 27, 2010
25,811
4,152
139,340
Momentum. Too difficult to change products in the middle of a datacenter build, that stuff is planned years in advance, parts purchased, contracts signed. A lot of it is outsourced anyway, so not up to corporate, but the supplier or hosting service they've contracted. Also, it is not like they are buying new hardware immediately. Most datacenters don't upgrade every few years, they might wait out the whole lifecycle of the hardware and only start replacement when hardware failures reach a certain percentage.

Most of my servers are running on 7 - 8 year old processors. These would be our latest equipment in a 'new' datacenter. As long as those guys have parts and can meet the required uptimes those computers probably have another 5 years in them before they consider an upgrade.
 
mangaman

mangaman

Honorable
Jun 13, 2015
601
58
11,440
JamesAndr said:
Like I've said before(maybe not in this thread), I would not be surprised if these exploits have been used in the wild long ago(relative to the release of white papers).
Click to expand...

Could be, but these vulnerabilities require many procedures to be effective. An attacker is much more likely to infiltrate a system using traditional malware tactics, as these CPU vulnerabilities found require an extensive checklist to be effective. Plus these are lab tested with specific computer systems, so it's unknown yet if any of these would be effective in the wild with so many different variations and system types.

Best thing to do right now is to be calm and updated on this matter.
 
  • Like
Reactions: Isaiah4110
G

Gilbert.

Dec 8, 2022
1
0
10
gamerk316 said:
So basically, there are two separate issues:

Meltdown: Confirmed on Intel CPUs. Believed AMD and ARM CPUs unaffected, or at the very least not affected in the same way. OS level fixes are being implemented.

Specter: Affects all Intel, AMD, and ARM CPUs. There is no current solution that works across the board.

Basically: Every consumer level CPU released since the mid to late 90's have had gaping security holes. One of them appears Intel specific and is being fixed, the other affects everyone and is not.

Fun times.
Click to expand...
Amazing information. I really enjoyed reading this thread and discussion by the people.
 
Status
Not open for further replies.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom