My take on Intel refuse to patch the bug.

[jj9987]

Windows 10 users are already receiving the update, KB4056892.

[WereCatf]

2 minutes ago, MrFriendism said:

I do a lot of Chrome thing and similar which is very heavy. Like 50 + tabs or so sometimes.

That doesn't count. Don't worry.

[ajgamer1]

Just now, WereCatf said:

That doesn't count. Don't worry.

What about the Adobe After Effects, Photoshop, Illustraror and such similar softwares?

[ajgamer1]

2 minutes ago, jj9987 said:

Windows 10 users are already receiving the update, KB4056892.

What about the Windows 7, Windows 8.1 and Mac OS Yosemite ?

[WereCatf]

1 minute ago, MrFriendism said:

What about the Adobe After Effects, Photoshop, Illustraror and such similar softwares?

That's still not the kind of workload I was talking about. After Effects handles big files, ie. lots of file-I/O, so sure, it might see a performance drop, but even then it'd probably be in the 1%-3% region or something. I can't say for sure, as I don't use it, but I still maintain that you shouldn't have anything to worry about. Just accept it, stop bothering yourself about it and go do something more fun.

[Vode]

1 hour ago, M.Yurizaki said:

I think that says "everything is fire"

I though it was a typo and a sarcastic remark about Otellini selling the shares.

[mariushm]

The bug is about applications being able to sort of read the portions of memory used by the operating system, and because that memory may contain some sensitive information from other programs, it's possible for applications to steal that data without your operating system or your antivirus being aware. 

 

For example, let's say you have a computer with two virtual machines, one running Windows and one Linux , they're like two separate computers running on your computer... each virtual machine has its own processor cores, own memory , own disk space and so on.

However, with this bug, an application running on your Windows virtual machine could read memory that belongs to the other virtual machine and in that memory there could be something sensitive.

 

Imagine a dedicated server in a datacenter which has 10 virtual machines running, each is "Virtual Private Server" you can buy for something like 20-30$ a month.  One user could buy a VPS to have a forum like this one we're writing to here,  while another user could buy a VPS just to install a minecraft server.

 

Well, the guy with the minecraft server could use this bug to read the memory and eventually it may catch the username and password of the forum database, or read forum posts, all being data it should never be able to get.

 

For a home user, just a regular Joe with browser and lots of tabs or watching youtube or playing games , there's not much worry, the only risk is that some viruses could take advantage of this bug to hide from antivirus programs. You may not even need to install the patches, your computer will work just fine like it worked since you bought it without these patches.

 

[ajgamer1]

58 minutes ago, mariushm said:

The bug is about applications being able to sort of read the portions of memory used by the operating system, and because that memory may contain some sensitive information from other programs, it's possible for applications to steal that data without your operating system or your antivirus being aware. 

 

For example, let's say you have a computer with two virtual machines, one running Windows and one Linux , they're like two separate computers running on your computer... each virtual machine has its own processor cores, own memory , own disk space and so on.

However, with this bug, an application running on your Windows virtual machine could read memory that belongs to the other virtual machine and in that memory there could be something sensitive.

 

Imagine a dedicated server in a datacenter which has 10 virtual machines running, each is "Virtual Private Server" you can buy for something like 20-30$ a month.  One user could buy a VPS to have a forum like this one we're writing to here,  while another user could buy a VPS just to install a minecraft server.

 

Well, the guy with the minecraft server could use this bug to read the memory and eventually it may catch the username and password of the forum database, or read forum posts, all being data it should never be able to get.

 

For a home user, just a regular Joe with browser and lots of tabs or watching youtube or playing games , there's not much worry, the only risk is that some viruses could take advantage of this bug to hide from antivirus programs. You may not even need to install the patches, your computer will work just fine like it worked since you bought it without these patches.

 

How about hijacked mining or ransom-ware?

Those are new things which are highly hurting as compared to malware now.

[mariushm]

Just now, MrFriendism said:

How about hijacked mining or ransom-ware?

Those are new things which are highly hurting as compared to malware now.

Nah, unlikely.

Again ... some application with bad intentions (or some web page with scripting or plugins active in it) has to run in order to "sniff" the memory of the computer and potentially get information that normally would not be available to it. If you're not actively loading website pages or running random applications on the computer, then nothing would run to get the opportunity of taking advantage of this bug.

 

If you have a mining rig which only runs the mining software and the firewall only lets https / stratum connections to the mining pool go through (or to your stratum proxy or whatever you use, if you have multiple rigs) and nothing go in, and you don't browse websites on that rig or run random apps, then nobody should be able to use this bug to do anything to your mining rig.

 

Right now, as far as i know the exploits only proved that it's possible to copy some bytes of memory from somewhere you normally wouldn't be able to reach. You can't write data there to affect the behavior or some applications or to corrupt them (inject your code into them), can't control what's there,  it's just some opportunity to get something you normally wouldn't get.  Could be total junk, could be something useless, in rare cases could be valuable data from databases, cached rows of database tables which could store usernames and passwords.

 

[jj9987]

2 hours ago, MrFriendism said:

What about the Windows 7, Windows 8.1 and Mac OS Yosemite ?

Latest High Sierra has some patches, others are in 10.13.3 beta. No clue about older ones, if and when.

 

Quote

Windows 7 and Windows 8 users can manually download and install the update now, however, Microsoft will roll-out the update automatically via Windows Update next Tuesday.

https://www.express.co.uk/life-style/science-technology/899948/Windows-10-Update-Intel-Processor-Risk

[Intel HD Graphics]

I am just here to ask about the new cpu bug that is going around that can slow cpu up to 30 %

[LienusLateTips]

Just look at the Tech News subforum, it's near the top of there

[Bouzoo]

It isn't the bug (design flaw) that can slow it, it's the patch to fix it, or to be more precise, the patch for meltdown, since there are 2 flaws. You won't notice any difference, it's the enterprise systems that get hit the most due to heavy workload, as pointed to me by a fellow member. 

[Danielvtheman]

FYI their is no way around this flaw.

[Danielvtheman]

Just now, Danielvtheman said:

FYI their is no way around this flaw.

Nor their is no way around the update.