Recentemente Intel ha affermato quanto segue in un comunicato stampa (corsivo aggiunto):
SANTA CLARA, Calif., Jan. 4, 2018 — Intel has developed and is rapidly issuing updates for all types of Intel-based computer systems — including personal computers and servers — that render those systems immune from both exploits (referred to as “Spectre” and “Meltdown”) reported by Google Project Zero. Intel and its partners have made significant progress in deploying updates as both software patches and firmware updates.
Intel has already issued updates for the majority of processor products introduced within the past five years. By the end of next week, Intel expects to have issued updates for more than 90 percent of processor products introduced within the past five years. In addition, many operating system vendors, public cloud service providers, device manufacturers and others have indicated that they have already updated their products and services.
Un altro comunicato stampa più recente ha ribadito questo (enfasi aggiunta):
In early December we began distributing Intel firmware updates to our OEM partners. For Intel CPUs introduced in the past five years, we expect to issue updates for more than 90 percent of them within a week, and the remainder by the end of January. We will continue to issue updates for other products thereafter. We are pleased with this progress, but recognize there is much more work to do to support our customers.
Sembra che stiano sostenendo di aver sviluppato aggiornamenti firmware per i loro processori che in qualche modo impediscono il funzionamento degli attacchi Meltdown e Spectre, e vengono distribuiti attraverso diversi fornitori.
Tuttavia trovo questa affermazione vaga e poco convincente.
Ci sono aggiornamenti del firmware / microcodice della CPU Intel che, parzialmente o completamente, impediscono il verificarsi di Meltdown e Spectre? In tal caso, in che modo ottengono ciò e in che modo influisce sulle prestazioni?
ULTERIORI INFORMAZIONI:
Dopo ulteriori ricerche, sembra che l'aggiornamento del "firmware" possa riferirsi a un aggiornamento del microcodice. Ancora nessun dettaglio reale su ciò che questo aggiornamento riesce comunque.
It's been rumored that Intel will be releasing microcode updates to (partially?) mitigate some of the effects of meltdown and spectre.
Intel has released several updates already, but not all of them AFAIK.
These microcode updates are of little impact until the kernel changes to activate the new MSRs are deployed. But they do mess with conditional jumps and LFENCE.
Anyway, uploading a partial, unofficial set of updates to unstable to close the bug. Several processors are still missing. I expect an official release from Intel soon, hopefully with updates for everything.
Everyone should look for firmware updates, the usual good vendors already have them out, or will have them out by the end of the next week.