New Class of CPU Flaws Affect Almost Every Intel Processor Since 2011

Earlier this month, researchers released information about a vulnerability in all modern Intel chips to include the chips used by Apple.  The new flaw is a speculative execution side-channel vulnerability that could allow an attacker the ability to steal system and user-level secrets from the CPU buffer.  If properly executed, disk encryption keys and user passwords could be at risk due to the vulnerability.  It is executed through the use of Microarchitectural Data Sampling(MDS), which is a combination of four different flaws.  Microcode Updates (MCU) have been released by Intel to fix the MDS vulnerabilities, and users are urged to implement the patches as soon as possible.

Relevant URL(s):