Any updates on this Intel bug? Have there been microcode updates?
When was this released? Which cve?
1 Like
The Spectre question in modern processors (not just Intel and not just x86_64) is not a specific vulnerability but a flaw in speculative execution which is part of the design of the instruction set architecture that use speculative execution.
These ISA can not answer the Spectre question they can only work around the Spectre question as more Spectre problems are found.
There are some processors that may have finally solved for the Spectre question that have come out of academia, like this risc-v based example.
One of the older ARM Cortex processors does not have any Spectre vulnerabilites.
For the Spectre question the final solution will most likely come in the form of a an ISA that is designed from the ground up with different fundamental assumptions.
For the rest of us who can’t wait for new processors to be designed, fabricated, and affordable, we work around the Spectre question by putting untrusted workloads on another computer that is isolated. This is great for running browser based apps or websites that serve code that can not be audited.
1 Like
Can you elaborate on “solved” the Spectre question? How was it “solved”?
Which generation of ARM Cortex processors doesn’t have Spectre Vulns?
1 Like
How webserver code is being audited? These vulns are mainly Javascript based?
Can scrape this code and then run on a VM?
How can you really “isolate” a machine running this code? My thought
is to scrape the code from site/CDN and run on own airgapped VM.
1 Like