Recently discovered Downfall and Inception vulnerabilities in Intel and AMD processors are also affecting Mac computers built with Intel CPUs.
This vulnerabilities could lead to security keys leakage to unprivileged code. There are no known exploits using this vulnerability at the time of writing.
AMD and Intel have both already released OS-level microcode software updates to address both issues. Both companies have also said that they’re not aware of any active in-the-wild exploits of either vulnerability. Consumer, workstation, and server CPUs are all affected, making patching particularly important for server administrators.
Ars Technica
CVE: CVE-2022-40982
Ars Technica: “Downfall” bug affects years of Intel CPUs, can leak encryption keys and more
References:
- Downfall vulnerability may affect Intel Macs; usual precautions recommended
- Latest Intel and AMD vulnerabilities a gentle reminder to switch to Apple silicon
Recommendations
Developer:
Install appropriate updates to Intel Macs as soon as possible. When using Intel Macs, use caution when using apps, always download applications from trusted sources.QA engineer:
Install appropriate updates to Intel Macs as soon as possible. When using Intel Macs, use caution when using apps, always download applications from trusted sources.PM/DM:
Install appropriate updates to Intel Macs as soon as possible. When using Intel Macs, use caution when using apps, always download applications from trusted sources.
You must log in to post a comment.