According to TheReg, a design BUG for Intel processors has recently been disclosed, covering Web browsers that run from data center applications to JavaScript. Operating systems include Windows, Linux, macOS, and others.
TPU said that Amazon, Microsoft and Google are the three most affected cloud computing vendors. If a vulnerability is exploited, virtual user A in the same physical space can access any data of another virtual user B, including the protected password , Application key and so on.
Security personnel stress that this is a design flaw in an x86-64 processor that has been around for more than a decade, but AMD is not affected.
Currently, Linux and Windows are already working on fixes, Because Intel can not make up for microcode updates, it requires an operating system vendor to work with it unless it is swapped for a new processor that does not have a flaw.
At the same time, another very troubling issue with this BUG is that, Repair will weaken the system 30 ~ 35% of the performance.
Data show that Intel would like to secretly repair, but the Linux kernel update log is still exposed, developers found new kernel page table isolation 'is to intercept cross-virtual account access.
The Windows side, from last November also started a kernel-level adjustments.
