I remember the days when bugs in x86 CPUs were almost unheard of. The Pentium FDIV bug and the F00F bug were considered these unicorn things.
This isn’t really the same kind of bug. Those bugs made instructions emit the wrong answer, which is obviously really bad, and they’re really rare. The bugs in the article make instructions take different amounts of time depending on what else the CPU has done recently, which isn’t something anyone would notice except that by asking the kernel to do something and measuring the time to execute affected instructions, an attacker that only had usermode access could learn secrets that should only be available to the kernel.
Why are they mentioning only Windows?
Perhaps because it came from a Microsoft report. Maybe they only know of this being fixed in Windows? I would assume it’d affect all OSs but then again, I certainly do not know enough about these things to understand what’s going wrong here.
That’d be my assumption as well, but journalists
betterhave to do better“PCs run Windows. I have a Mac, which is not a PC.” - Average Tech Journalist.
Thanks. So zen 5 seems fine and patch for 3 and 4 will come with a newer kernel.
