Meltdown fix can make some machines slower - Intel

Rodiano Bonacci
Gennaio 13, 2018

After the article was published, Navin Shenoy, executive vice president and general manager of Intel's Data Center Group, issued a statement addressing the matter.

"We have received reports from a few customers of higher system reboots after applying firmware updates", Intel said on Thursday.

The hardware vendor said these systems are both home computers and data center servers.

Following announcements of the Google Project Zero security exploits last week, Intel has continued to work closely with our partners with the shared goal of restoring confidence in the security of our customers' data as quickly as possible.

Shenoy said that if the reboot issue requires a firmware update, it will be distributed through normal channels.

Nvidia updates but claims to be unaffected by Sceptre
Intel's fix for Meltdown and Spectre had a bug of its own

The potential review of the Intel Meltdown patch comes soon after CEO BrianKrzanich announced the company's "Security-First Pledge".

NVIDIA is also making sure that their graphics processing unit (GPU) users are secure after the central processing unit (CPU) security issue, as they have announced that they will be releasing a series of updates to counter the said meltdown. WSJ got its hands on a document Intel has been sending out, which recommends that customers "delay additional deployments of these microcode updates" while it figures out the reboot issue. Google has detailed its process for patching its own cloud services like Gmail and Google Drive against Spectre and Meltdown, and it says that it managed to protect against those vulnerabilities without any hit to performance. Those updates can be found on Intel's site.

Since the major processor-based Spectre and Meltdown vulnerabilities came to light earlier this month, technology companies have been working to develop and deploy patches across millions, if not billions, of devices. Vulnerability to Variant 2 has not been demonstrated on AMD processors to date.

VMware has pledged to issue fixes at the hypervisor level, and cloud providers such as Google and Amazon say they've patched their VMs, but it's wise to patch the kernels, as well, Pereira said. "If the question becomes, 'Is [the pledge] valuable or just brand management?' the answer has to be that it's both", Wenzler told SearchSecurity. But with the vulnerabilities now public, security researchers worry it'll only be a matter of time.

Altre relazioniGrafFiotech

Discuti questo articolo

Segui i nostri GIORNALE