Skip to main content
  1. Home
  2. Computing
  3. News

New Spectre-like bug could mean more performance-degrading patches

By
Speculative Store Buffer Bypass in 3 minutes

A new CPU bug that shares a number of similarities with the Spectre and Meltdown exploits which came to light earlier this year, has been discovered. Termed the Speculative Store Bypass, it already has fixes and firmware updates that have been shipped out to OEMs to distribute, but there is some concern that the patches will impact processor performance when applied.

Recommended Videos

Speculative Store Bypass is much closer in design to Spectre, in that it exploits the speculative aspect of modern CPUs which helps speed up certain calculations. As Microsoft and Google each discovered in their research though, that speculation is vulnerable to exterior attack and can be exploited to steal data and personal information from a system’s user. With that in mind, new fixes are being developed that will shut down that functionality in affected processors, but as a result, some calculations will take longer to complete — and in some cases, that impact can be significant.

Related: 
Best new movies to stream on Netflix, Hulu, Prime Video, Max (HBO), and more

Although the firmware updates are seen as somewhat unnecessary, as earlier improvements to CPU security to prevent against Spectre should provide adequate protection against the new exploit, Intel has provided a full mitigation firmware update as well. The update is currently being distributed by OEM partners, but the patch will not be enabled by default and it will be up to software providers to decide whether they want to use it or not.

“If enabled, we have observed a performance impact of approximately 2-8 percent based on overall scores for benchmarks like SYSmark 2014 SE and SPEC integer rate on client 1 and server 2 test systems,” Intel’s general manager of product assurance and security, Leslie Culberston said.

Considering that this newly announced flaw is harder to exploit than previous variations of the Spectre bug, it may be that most software providers do not choose to leverage the additional protections, as per The Verge. As with Spectre and Meltdown though, permanent fixes for the problem will only be possible through changes to the way the chips are designed and that will involve hardware alterations. Intel has promised that its next-generation CPUs will not be susceptible to these sorts of exploits.

Jon Martindale
Jon Martindale
Evergreen writer
Jon Martindale is a freelance evergreen writer and occasional section coordinator, covering how to guides, best-of lists, and…
Topics

Editors’ Recommendations

This new Windows 11 setting could improve performance and battery life
Windows 11 updates are moving to once a year.

Yesterday, Microsoft released the Windows 11 26252 build, which brings a flood of innovations that will give users a much-needed power boost. One of those changes is a new power setting that will provide the user more control when their PC is on battery power or not, as Phantom Ocean 3 mentions in a post on X (formerly Twitter), which was noticed by Windows Latest.

In theory, this greater degree of control will allow your system to automate power settings so that you don't forget to manually switch them while plugged in or on battery.

Read more
No more GPUs? Here’s what Nvidia’s DLSS 10 could look like
RTX 4070 logo on a graphics card.

The latest version of Nvidia's Deep Learning Super Sampling (DLSS) is already a major selling point for some of its best graphics cards, but Nvidia has much bigger plans. According to Bryan Catanzaro, Nvidia's vice president of Applied Deep Learning Research, Nvidia imagines that DLSS 10 would have full neural rendering, bypassing the need for graphics cards to actually render a frame.

During a roundtable discussion hosted by Digital Foundry, Catanzaro delved deeper into what DLSS could evolve into in the future, and what kinds of problems machine learning might be able to tackle in games. We already have DLSS 3, which is capable of generating entire frames -- a huge step up from DLSS 2, which could only generate pixels. Now, Catanzaro said with confidence that the future of gaming lies in neural rendering.

Read more
Grammarly’s new ChatGPT-like AI generator can do a lot more than proofread your writing
GrammarlyGO's Rewrite for Length feature is shown.

Grammarly, one of the biggest names in writing tools, is adding AI-generated text to its repertoire on the heels of the wild popularity of ChatGPT. Known as GrammarlyGO, this new tool is focused on improving writing rather than replacing the writer.

GrammarlyGO will roll out in beta form to existing users in April. All tiers, including developers, business, education, and premium users, will have access. You can even use GrammarlyGO with a free account.

Read more