A new vulnerability in the CPU world has just been discovered, this time under the name of 'SWAPGS', and code CVE-2019-1125. So this new flaw was even discovered about 12 months ago by a private investigator who 'sold' the information to Intel.
Interestingly it should exist on both Intel and AMD processors. However, there is still only evidence of operation on the Intel platform. (One more to add to the many problems of recent Intel architectures.)
However, Microsoft has already released a minor fix to mitigate SWAPGS issues.
How does SWAPGS work?
Here is a new vulnerability in the Specter family that takes advantage of processor branch prediction functionality. That is, when the processor speculates what sequence of instructions will be needed, and prepares its internal states for its execution.
As the processor prepares the entire process, an attack may exist and the user's private information will be revealed.
As you may know, if you have been aware of the Specter and Meltdown vulnerabilities, there are no major hardware mitigations implemented for these types of issues. Thus, the industry still relies heavily on software / firmware fixes to mitigate vulnerabilities, which of course has system performance costs.
Only the latest processors on the market already have hardware mitigations. That said, either upgrade your machine, or will have to rely on the patches from Microsoft, AMD and Intel.
Unfortunately, we do not yet know the impact of mitigations on the performance of the hardware in question.
Besides, what do you think about all this? Share with us your opinion in the comments below.
You can breathe a sigh of relief. Lisa Su will stay in charge of AMD!
Yesterday, there was a rumor with frighteningly reliable foundations that AMD CEO Lisa Su was thinking of leaving her post to join IBM. By the way, according to the latest information, the company was even preparing the succession, with the hiring of Rick Bergman.
Read the rest of the article on here.