Skip to main content
  1. Home
  2. Computing
  3. News

Nvidia’s latest software update helps protect your system from ‘Spectre’

By

GTX 1070 Ti
Image used with permission by copyright holder
Nvidia is coming to the rescue, to help protect your system against the Spectre exploit. Or more specifically, to make sure its drivers can’t be used against you.

Here’s the thing about Spectre, it’s a hardware-level exploit, so rolling out a security patch isn’t as easy as it would be if they were just regular security vulnerabilities living somewhere on your computer. Patching this thing involves patching all the pathways someone could potentially take into your system.

Recommended Videos

Spectre and Meltdown take advantage of “speculative execution” to gain access to the beating heart of your operating system, its kernel. Because of that, manufacturers have had to roll out some tricky firmware updates, which insulate your system against the Spectre and Meltdown exploits.

Get your weekly teardown of the tech behind PC gaming
Check your inbox!
Privacy Policy

The new Nvidia drivers make sure your GPU and its software are protected against “speculative side-channel vulnerabilities.” Nvidia accomplished this by effectively making sure your GPU can’t be used as a pathway into your operating system’s kernel.

Nvidia identified three main components of the Spectre exploit, and this patch — which you can and should go get now if you have an Nvidia graphics card — addresses two of them. The third version of the exploit shouldn’t be an issue, Nvidia says.

“At this time, Nvidia has no reason to believe that Nvidia software is vulnerable to this variant when running on affected CPUs,” the patch notes read.

To be clear, Nvidia’s hardware isn’t vulnerable to these exploits. Meltdown and Spectre are CPU exploits, not GPU exploits. This patch effectively shuts the door on Spectre by making sure it can’t be used to take advantage of the close relationship between your GPU, its drivers, and your operating system’s secure kernel.

The Meltdown and Spectre exploits were revealed by Google’s Project Zero security team. The exploits were actually uncovered in 2017 and Google’s team notified vendors who might be in the business of selling potentially vulnerable products.

“As soon as we learned of this new class of attack, our security and product development teams mobilized to defend Google’s systems and our users’ data. We have updated our systems and affected products to protect against this new type of attack,” Google’s Project Zero team reported. “We also collaborated with hardware and software manufacturers across the industry to help protect their users and the broader web.”

Editors' Recommendations

Topics
Jayce Wagner
Jayce Wagner
Former Digital Trends Contributor
A staff writer for the Computing section, Jayce covers a little bit of everything -- hardware, gaming, and occasionally VR.
An Nvidia vulnerability has been found. It’s time to update your drivers
nvidia rtx 2080 super review mem4

Just this month, Nvidia posted a security bulletin on its site alerting consumers that GPUs in its GeForce, Quadro, and Tesla product lines were all affected by serious vulnerabilities. The vulnerabilities range in severity, but get as dangerous as local code execution and privilege escalation, and can be found in all versions of numerous driver tracks that the company provides for its hardware.

Notably, this includes the R430 line that powers the GeForce GPUs. While Nvidia has since issued new patched versions of all of its GeForce and many of its Quadro drivers, patches for some of its Quadro and Tesla drivers have not been released, and in some cases won't be ready for two weeks.

Read more
Audi’s latest suspension system can help protect you during a crash
audi a8 predictive adaptive suspension system european spec

Audi is launching a more sophisticated suspension system for its A8 flagship sedan in Europe. Adaptive suspension systems, which can automatically adjust settings based on road conditions or the driver's preferences, are nothing new, but the new "predictive" system launching in the A8 is one of the smartest ever. It can lift or lower the body up to 3.3 inches in response to road conditions, according to Audi.

The suspension system relies on the A8's 48-volt electrical system, which powers an electric motor mounted at each corner of the body. Each motor twists a steel tube, which is connected to an element of the suspension. The motors can react within five-tenths of a second, according to Audi. The all-electric system also consumes less power -- between 10 and 200 watts -- than previous hydraulic adaptive suspension systems, according to Audi.

Read more
The HP Victus gaming PC with RTX 3060 has a $550 discount
The HP Victus 15L gaming PC in white.

Gamers don't need to spend more than $1,000 if they want to buy a new gaming PC because there are affordable options like the HP Victus 15L gaming desktop. From its original price of $1,400, you can get it for just $850 as HP has applied a $550 discount on this machine. However, you shouldn't delay your purchase because there's no assurance that the gaming PC will still be 39% off tomorrow. If you want to make sure that you get it for less than $1,000, you're going to have to complete the transaction for it within the day.

Why you should buy the HP Victus 15L gaming desktop
You shouldn't expect the HP Victus 15L gaming desktop to match the performance of the top-of-the-line models of the best gaming PCs, but it's surprisingly powerful for its cost. Inside it are the 13th-generation Intel Core i7 processor and the Nvidia GeForce RTX 3060 graphics card, with 16GB of RAM that our guide on how much RAM do you need says is the best place to start for gaming. It's enough to play today's best PC games without any issues, and it may even be capable of running the upcoming PC games of the next few years if you're willing to dial down the settings for the more demanding titles.

Read more