However, a well-known computer security agency Computer Emergency Response Team (CERT) said in a statement that there is only one way to remedy the flaw: replacing the CPU. CERT is funded by the U.S. Department of Homeland Security and Communications Office, Carnegie Mellon University.
CERT researchers wrote in the report, 'This low-level defects mainly caused by the choice of CPU architecture design, and the elimination of this defect altogether requires the replacement of vulnerable CPU hardware.'
They also advise users to install various software patches, but also point out that this will only "mitigate the effects of underlying hardware defects."
The CERT statement has no binding effect on the companies affected by the CPU product The companies listed by CERT that are affected by this flaw include technology giants such as AMD, Apple, ARM, Google, Intel, Microsoft and Mozilla.
Together, these companies make up the bulk of the computer and smartphone chips, which can be difficult to calculate if they face legal or public pressure to replace the CPU for their users.
Currently, companies can only pray that software patches can significantly reduce security risks so as to avoid large-scale prosecutions and further public fierce opposition.