last Intel processor explodes give flaw to need to hit a patch, cause computer function to drop at the same time the lingering fear of at least 10% has not been eliminated, foreign media explodes again here gave Intel CPU another place name is ZombieLoad (funeral cadaver is laden) new loophole, identical is, these flaw are the small framework blemish that uses Intel processor hardware to go up, can pass hardware only (Intel) or business of operating system production rolls out a patch to come repair. The terrible point of ZombieLoad flaw depends on, it spills over through causing what CPU branch forecasts, obtain the data of all application software in current processor cache thereby, the data in including the fictitious plane that respective segregation answers originally on cloud server even.
The harm of ZombieLoad flaw
To individual user, the harm that you may understand this flaw hard temporarily has how old, I say bit simplier with you, at present personal computer market begins to have partial AMD processor really (do not have this flaw) loot the processor market of Intel, but preliminary estimation is occupied with the market of Intel than be 15:85, this is individual domain. In server domain, this proportion is larger, it is 3:9 probably7, the meaning below character, almost the processor that the server of 95% above is use Home Intel. And now this ZombieLoad flaw, the intermediary outside occupying estimates a likelihood to contain this flaw from the Intel processor after 2011, and the cloud (cloud server / the cloud dish) begin at 3-4 before New Year, accordingly these servers used the Intel processor that contains this flaw without doubt.
Which terrible place came, carry some kind of specific operation, user of for example guiding installs the software that contains baleful code, this software can cause Intel processor to forecast carry out break down, read thereby take all moves currently application data that are located in Intel CPU to wait for executive command buffer at the moment (all in moving at the moment server data that include to be kept apart with fictitious chance way) . Show a lot of App that use in us actually, rear need server provides a service provides them, and they are hire for the most part of company of a few cloud exceed group of large physics server to pass software again cut comes out " fictitious server " (it is lead plane of so called cloud) , once kept apart a technology because of the VT hardware of Intel, these fictitious machine (in server of same table physics) the data between is complete segregation, for example is on some physics server, altogether moves have A, B, C3 the App of different company, use different fictitious aircraft to be kept apart severally come, once was in theoretic, the data that they store in 3 App and space of this cloud lead plane is absolutely cannot be visited by the user of another fictitious machine, that is to say even if A is fictitious machine by black, all data are divulged, but fictitious machine of B fictitious machine and C is safe (although they are located in lead plane of same table physics essentially,go up) . But after having flaw of this corpse load, likelihood B website was installed the software that contains safe question, which B and C use the data that the user is referred in real time and visits at the moment, fall into enemy hands likely also because of the fictitious machine of A application and be read to take.
That is to say, if cloud server business (the server provider of hire of application of major small-sized App) not upgrade for a short while the word of the operating system, extremely possible in you complete unwitting circumstance falls, the information such as your what credit card or home address phone was read to take by the family, you still do not know. Because the intermediary outside the basis reports, this kind of attack that is based on processor small framework does not have method to be identified to come out temporarily. And general cloud server supplier, the likelihood on server of a physics is moving at least 8-32 different fictitious aircraft.
How does individual user answer ZombieLoad flaw
Sampling of dangerous to this height small framework data (MDS) safe problem, intel states the part is newest the 8th generation of the paragraph and cruel of the 9th acting Intel farsighted processor pass an imperial examination 2 Dai Zhijiang can expand processor has been in hardware level rehabilitate. In the meantime, to early before issuance Intel Xeon, intel Broadwell, sandy Bridge, skylake and Haswell chip. Intel Kaby Lake, coffee Lake, whiskey Lake and Cascade Lake chip also are affected, and all Atom and Knights processor also had rolled out MCU (small yard is updated) , after installation should be updated, the system will be more active cleared be located in the data in Intel processor buffer, so this also brought personal computer about 3% , server the performance loss of about 9% .
To malic computer, the rehabilitate in the operating system version after malic company states they had been reached in MacOS Mojave and browser of new edition Safari this one flaw, macbook and Mac user need to update newest systematic patch in time only can.
And Google expresses, the Chrome 74 browser of latest edition, the HT that has used Intel processor through banning (Hyper-Threading) technology of Cheng transcending a line will avoid to be endangered by place of this one flaw. But the fellow student that has used Chrome browser should know, if imprison the technology that use HT, that super the CPU core that ate the Chrome browser of CPU to reduce an in part (shut Cheng transcending a line) , this acid bright. . .
And Microsoft also expresses to be about to release this flaw patch that is based on Windows10 later on today, the user that using Windows PC remembers be being updated to moment, say like above paragraphs place nevertheless, your computer will a bit slower.