https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00145.html
"Systems using Intel® Core-based microprocessors may potentially allow a local process to infer data [...] from another process through a speculative execution side channel."
oh COME ON Intel not again
@sn0w I can relate. I don’t want to hear about hardware security for a while after the end of my PhD thesis.
@sn0w deja vu
I have seen this bug before
so speculative
and they know there will be much more
Also in case you were wondering: Intel's latest CPU sadness leaks the contents of your SSE/AVX/MMX registers. This is hilariously bad because SSE registers are often used to store AES encryption keys.
It's currently not known if it's possible to exploit this remotely (eg through a web browser).
This is the goddamn SIXTH side-channel and/or speculation issue. That's it. I'm joining team red.