All Intel Chips Open To New 'Spoiler' Non-Spectre Attack

Spoiler is the newest speculative attack affecting Intel's micro-architecture. From a report: Like the Spectre and Meltdown attacks revealed in January 2018, Spoiler also abuses speculative execution in Intel chips to leak secrets. However, it targets a different area of the processor called the Memory Order Buffer, which is used to manage memory operations and is tightly coupled with the cache. Researchers from Worcester Polytechnic Institute, Massachusetts, and the University of Lubeck in north Germany detail the attack in a new paper, 'Spoiler: Speculative load hazards boost Rowhammer and cache attacks'. The paper [PDF] was released this month and spotted by The Register. The researchers explain that Spoiler is not a Spectre attack, so it is not affected by Intel's mitigations for it, which otherwise can prevent other Spectre-like attacks such as SplitSpectre.

Here we go again!

Here we go again! I'm going to go make more popcorn.

Re:Here we go again!

"So I don't think we will see a patch for this type of attack in the next five years and that could be a reason why they haven't issued a CVE."

That's actually a silly reason not to open a CVE. A CVE is opened even before there are fixes available. It's made to track vulnerabilities.

Re:Here we go again!

[Oswald+McWeany]

Here we go again! I'm going to go make more popcorn.

Good idea- I'm going to place some unpopped kernels on my Intel CPU.

Actual Link to Register Article

[j_f_chamblee]

As opposed to spammy, pop-up filled ZDNet article.

https://www.theregister.co.uk/...

Re:Actual Link to Register Article

[TFlan91]

And what should've been the summary:

The researchers – Saad Islam, Ahmad Moghimi, Ida Bruhns, Moritz Krebbel, Berk Gulmezoglu, Thomas Eisenbarth and Berk Sunar – have found that "a weakness in the address speculation of Intel’s proprietary implementation of the memory subsystem" reveals memory layout data, making other attacks like Rowhammer much easier to carry out.

The researchers also examined Arm and AMD processor cores, but found they did not exhibit similar behavior.

"We have discovered a novel microarchitectural leakage which reveals critical information about physical page mappings to user space processes," the researchers explain.

"The leakage can be exploited by a limited set of instructions, which is visible in all Intel generations starting from the 1st generation of Intel Core processors, independent of the OS and also works from within virtual machines and sandboxed environments."

Also, in before f**k JavaScript. The researchers just chose to use this has a means to demonstrate the weakness in Intel processors, not a weakness in JS.

Re:Actual Link to Register Article

[thereddaikon]

Also, in before f**k JavaScript. The researchers just chose to use this has a means to demonstrate the weakness in Intel processors, not a weakness in JS.

Fair enough, but still fuck javascript.

Re:Actual Link to Register Article

[phantomfive]

The problem with Javascript is that every day you allow complete strangers to run their javascript on your computer.

Most people don't want to use no-script, but even if you don't, then it is imperative to use adblock. There is too much malware in ads otherwise.

Re:Actual Link to Register Article

[thereddaikon]

Shit like this is why so many users have disdain for AC's.

Re: Actual Link to Register Article

[Shaitan]

It's definitely loose

Re: Actual Link to Register Article

[Shaitan]

"The big push for JS is trying to pass processing demand off from the cloud to client devices and make fancier UI interactions."

Yes, I do believe this was what he was referring to. Javascript can also be used for server-side dynamic content but interaction web application interfaces and that "UI Interaction" is the primary niche nothing else has filled well. Which is a shame because javascript is a horrible bastardized beast of a language but it is true nonetheless.

Re:Actual Link to Register Article

[Shaitan]

Technically he is wrong but there is an area of web-based application interaction and communication that isn't done well by other solutions, hence the lack of any other placeholder accepted by the market to fill it.

Re:Actual Link to Register Article

[jpaine619]

What the actual fuck? You think you have to use javascript to have non-static pages? AHAHAHAHAHAHAHAHA

Re:Actual Link to Register Article

[sjames]

The weakness is not in JS itself, but JS from a hostile web site is the most likely vector for code that uses the flaw to attack a desktop machine.

Re:Actual Link to Register Article

[thereddaikon]

Well we could have had Dart but everyone said nah I like JS. And of course there is WebAssembly which seems to be the new hotness.

Re: Actual Link to Register Article

[l33t+gambler]

How about Privacy Badger? Does that one block malware too, or only tracking cookies?

It's nice to see

[mandark1967]

Intel's committment to backward compatiblity

Re:It's nice to see

[OffTheLip]

Now that's funny.

Effective from Javascript

[phantomfive]

Quoth the article:

The researchers say that Spoiler improves Rowhammer attacks and cache attacks that reverse-engineer virtual-to-physical address mapping. Using Spoiler, they show the leakage can be used to speed up reverse-engineering by a factor of 256. It also can speed up JavaScript attacks in the browser.

It's not clear that this vuln allows you to attack anything by itself, but being able to speed up Rowhammer shows why you need to take vulnerabilities seriously, even if you can't figure out how to exploit them.

Re:Effective from Javascript

[AmiMoJo]

Rowhammer lets you steal data from other tasks and the OS. That's why it's so useful for reverse engineering - you can get at protected OS data like the executable code or crypto keys, and use that to develop further exploits.

For example the PS3 security was broken when someone did a glitch attack to allow them access to protected OS memory, dumped the OS and found a USB exploit that could be then used without the glitch. Rowhammer just allows the glitch to be done in software from user-land, where as the original PS3 hack required physically disrupting the memory bus address lines.

Please explain the rowhammer relationship

[goombah99]

Perhaps I've misunderstood what Rowhammer was. I thought it was a a corruption attack caused by repeated adjacent bank accesses flipping bits in another bank. Thus I thought it's intent was to corrupt the adjacent bank not read back the adjacent bank. I don't even see how the bit flipping could work in the reverse direction to leak out information.

Yet this article seems to say it amplifies a rowhammer attacks efficiency and also can be used to spy on other processes.

Not seeing how. So maybe I have this wrong?

Re:Please explain the rowhammer relationship

[crow]

I'm not sure either, but I would speculate that since the attack lets you find out about the memory layout, you can figure out where another application (or VM) is using memory, so you can target that memory with Rowhammer, using your own memory that has the right physical relationship on the DRAM chips. I would also speculate that you could use Rowhammer to corrupt your own memory in a way that is predictably different depending on the contents of the memory in the other application, allowing you to read the other application's data.

It all sounds very difficult to make serious use of, but the difficulty of mitigating it makes it a good target for someone who has the resources to make a serious effort.

Re:Please explain the rowhammer relationship

[DamnOregonian]

It's a good question. I'll answer.
Rowhammer allows you to flip bits in memory with specific relationships to memory you can access.
If one of the bits you're able to flip happens to be bits in a page table, and enough stars line up, allows you to flip access bits on pages you're interested in, the MMU will let you read them as you will. Meltdown addresses this problem by completely swapping out the kernel pagetables between context switches.
However, if even more stars line up, then you can potentially map pages back in.
Leaking information about the page tables does make that a much faster process.
To be clear: Rowhammer is a problem on all CPUs. This accelerates the speed at which Rowhammer can try to brute force a page table entry.

Re:Please explain the rowhammer relationship

[goombah99]

thanks. that makes sense.

I've wondered as well why cpu makers don't try to trap these problems with process oversight rather than prevent them. For example, Rowhammer is the use of the memory in a way that exceeds memory specs. You could say the same was true if somehow it was causing overheating or excess current draw. It exceeds specs. We have temperature monitors and current monitors to catch and shut down those two. So why not a monitor that detects rowhammer's spec exceeding aspects? I can't say exactly what that would be but it seems like a rate counter on bank accesses would probably tell you if a bank is being accessed faster than it can be sustainably refreshed. Heck you could even just have a wimpy capacitor that gets read every time the bank is accessed that is guaranteed to deplete before the one storying actual data deplete. So you should be able to detect this right on the memory chips themselves I should think.

That way you don't have to slow things down trying to prevent this in microcode. It's ahardware problem and seemingly a cheap fix. Everyone would buy ram that was rowhammer proof.

Re:Please explain the rowhammer relationship

All heuristic scanning processes have this same problem. In a general purpose device you simply can't classify things as weird or abnormal because new software can do all sorts of new and weird things. That leaves you with pattern recognition wack-a-mole looking for specific attacks. Proactive vs reactive. It is very hard to be proactive here which is not to say its impossible. I imagine the engineer that figures out a way to do it is going to become well funded.

Re:Please explain the rowhammer relationship

[sjames]

Rowhammer is indeed a bit flipping attack. The idea here is that if you can figure out the physical page layout, you can make a better guess about what bits you might like to flip in the page table to make a R/O page R/W or to map a physical page you shouldn't see into your address space.

It's still a 'statistical' attack. It won't always work before something else flips and crashes the machine.

I'm starting to think

[thereddaikon]

That speculative execution as a concept is flawed and insecure. Or at least the way it is understood today. Perhaps new implementations need to be developed or potentially we should just abandon the concept altogether and accept our CPUs will be a bit slower.

Re:I'm starting to think

[lgw]

That speculative execution as a concept is flawed and insecure.

It's great as a concept, and there's nothing about the concept that's inherently insecure. It was just implemented with a blind unconcern for security that isn't really excusable in any project that started after 2000 or so.

Re:I'm starting to think

[HiThere]

Sorry, but I must disagree. Inherent in the concept of speculative execution on a CPU is a more complex CPU design, and this means that the chance of design error is vastly increased. Now consider just how difficult it is to write a bug-free program, and how much more difficult it becomes as the complexity of the program increases. Then consider that you can't really do an exhaustive test of a CPU within the lifespan of the universe.

All that said, either these "bugs" are intentional, or Intel have been exceedingly careless, and since there are a lot more "bugs" revealing information that producing erroneous results I know which way I lean.

Re:I'm starting to think

[gweihir]

It is not really fundamentally flawed. It need care both in its implementation and on the side of the coders using it and there needs to be special support to do some things non-speculatively, but it well can be and will remain part of any fast CPU. This is not so different from other speed-enhancing technologies. The main problem here is that Intel seems to have stopped caring at all a long time back and went to speed as the only goal and AMD had to follow at least partially to get reasonable speeds. But that there are serious dangers here was clear a long time ago and it was discussed in CPU conferences wayyyy back.

Re:I'm starting to think

[gweihir]

I am with "Intel has been exceedingly careless" here. Their tech has been inferior to AMD for quite some time, all they have (had) is better speed. And I think they pushed that one advantage without care and mercy.

Re:I'm starting to think

[RhettLivingston]

Is it speculative execution that is the problem or backtracking? What if we were to pull the speculative execution out of the time domain and put in parallel in space? If we were to include multiple pipelines in the same core, we could speculatively execute multiple branches in parallel and just dump all but the good one when we find out which is right. Then do a single cycle copy of all stages of the good pipeline over all pipelines to resync. With completely separate HW, there would be no potential for one speculation to gain knowledge of another.

This approach would allow speculative execution with separation of HW and the timing would appear as though the correct branch was always taken. The downside is that much more power and HW is being used per core. This may be acceptable to produce what would likely be the fastest IPC rating ever. At least in desktop applications, we're not so desperate for more cores anymore. Cores that do more could be very good.

Re:I'm starting to think

[sjames]

The concept is fine (in some cases even mathematically provable). It doesn't become a problem until you try to push beyond what you can actually get away with or worse, knowingly cut corners and hope nobody notices.

Re:I'm starting to think

[thereddaikon]

Maybe I misunderstand the issue but I thought the problem had more to do with the physics of the hardware and less to do with any mathematical model the system was based upon.

Re:I'm starting to think

[sjames]

It's not a matter of physics really, other than the speed of light and the size of the components on the die preventing us from just speeding up a simple serial processor with a TB of RAM as fast as cache on die.

Modern CPUs do their best to work around those limitations through pipelining, speculative execution, and speculative memory operations. The principal being that as long as the actual resulting computation once the speculations are all retired (either incorporated into the result or discarded) is indistinguishable from a simple "virtual" CPU that simply did the computation in the natural thread order but is magically faster.

So far, so good. The problem happens when that concept is pushed to the breaking point. We can look further ahead and do even more speculative execution if the processor can make accurate guesses as to how likely a particular speculative execution is to pay off. Those guesses can become more accurate if the CPU can "learn' more about the liklihood based on previous passes through a loop. This is the point where Spectre rears it's ugly head. The liklihood depends on the data that only the process should know.

Even all of that would be OK except that the speculative execution affects what memory gets loaded into the cache. If the CPU always did the speculative execution or never did the speculative execution, the state of the cache would reveal nothing. But if it only sometimes does the speculative execution, the cache state may reveal to other processes when the CPU did or did not speculate. If that decision is based on private data, that data is revealed outside of the process. Note that if discarding a failed speculation also reverted the cache to the pre-speculation state, there would also be no leak.

Honestly, it's a fairly subtle leak, so it's little wonder so many CPUs share the flaw.

meltdown is a special case where even the permission check is done out of order during speculation. That one is Intel specific. Other architectures either do the permission check before they decide to speculate further or just don't speculate when a permission check would be needed.

Note, however, that even if all speculative execution was disabled, there still exists a possible information leak based on how long it takes to execute instructions in order without cache effects. That's why constant time crypto functions are desirable. That is functions that take the same amount of time no matter what the input data is.

Back To The Abacus.

[Zorro]

Obsidian and Flint never had these problems. Maybe we SHOULD go back to being Cavemen.

Re:Back To The Abacus.

[Fly+Swatter]

Pretty sure the Abacus is vulnerable to the table shake attack. Also anyone walking by can see your current value.

There is an immediate fix:

[Gravis+Zero]

Buy an AMD chip and motherboard.

Re:There is an immediate fix:

[willaien]

AMD has had some speculative execution attacks that are viable against them, and there's probably undiscovered/undisclosed ones.

The correct answer is: don't run untrusted code, even from websites. Come up with better (slower) execution environments that enforce timings.

Re:There is an immediate fix:

Sure there are undiscovered ones, but you can't put that on the same plate as lots and lots of DISCOVERED ONES. There are no AMD POC's. Stop spreading FUD.

Re:There is an immediate fix:

[HiThere]

No. They suffer from SOME Spectre errors. Not most. And the ones they suffer from are more difficult to implement.

Most of the errors, and especially most of the ones that are (relatively) easy to implement, are Intel specific.

That said, AMD has it's own "management engine". Not good.

Re:There is an immediate fix:

[Misagon]

The researchers had tested only an AMD processor of the previous generation: Bulldozer.
It is still unknown if Zen is susceptible to this attack or not.

Re:There is an immediate fix:

[SurenEnfiajyan]

As of 2018, AMD chips are also vulnerable to Spectre1 and Spectre2, only Intel has Meltdown alongside these issues. As for now much more Spectre types have been discovered and this list keeps growing. Many Intel, AMD and ARM chips are vulnerable.

Re:There is an immediate fix:

[gweihir]

They have a part of the issues, but they also come with it being a lot harder to exploit than on Intel, on some so hard that it is not even clear whether they can be exploited at all. (No such doubts on Intel). Denying that AMD now has a significant security advantage is just blind.

Re:There is an immediate fix:

[RhettLivingston]

Even Intel doesn't believe this. If they did, they wouldn't have so desperate to combine the Spectre and Meltdown issues into one announcement and jump the gun on the announcement in order to obfuscate the fact that their exposure to these problems was and is much greater.

Re:There is an immediate fix:

[SurenEnfiajyan]

Why people misunderstand me. I just said that AMD has many of the issues that Intel has, they are somewhat fewer but they exist. Did you miss this?

I agree somewhat, they're fewer than in Intel chips.

AMD has some advantages (such as not having Meltdown, but as far as I know only Linux dynamically toggles this mitigation, not sure about MacOS) but it still has many Spectre type issues. Some people might prefer AMD chips because of this.

Re:There is an immediate fix:

[willaien]

https://www.amd.com/en/corpora...

Re:There is an immediate fix:

[gweihir]

I did not miss your statement. While AMD has some of the Spectre type issues, they are far harder to exploit on Intel due to implementation differences, to the point that some researchers doubt they can be practically exploited on AMD at all. To be fair, they are already pretty hard to exploit on Intel.

Re:There is an immediate fix:

But you can bet that Intel spent all of the 90 days trying to get it to fail on AMD Zen too so that they could muddy the waters with a press release and try to blame AMD too. So chances are very good AMD has no problem with this one.

Re:There is an immediate fix:

[willaien]

Exactly how would that be muddying the waters? It's fair to point out that issues affecting your system affect your direct competitors, too.

Flawed HW+ inefficient SW = disappointment

[SurenEnfiajyan]

Modern computing becomes so disappointing. New and new security issues are discovered in CPUs and the software becomes more and more inefficient after each mitigation without the full benefit of the speed of the modern hardware. I wonder if we'll the point where it will be more practical just not to optimize hardware in some ways anymore since more problems are created than solved.

Re:Flawed HW+ inefficient SW = disappointment

[ReneR]

that's why I still stick to my Sgi Octane (w/ Linux): https://www.youtube.com/watch?... and when performance does not matter, a SPARCstation 2 https://www.youtube.com/watch?... ;-)!

Re:Flawed HW+ inefficient SW = disappointment

[HiThere]

It's already past that point. But the simpler chips aren't manufactured with modern techniques.

The better approach would be massively multi-processor chips with drastically simpler CPUs. Say something similar to the M68000, only also with 64 bit words. You'd need to add a few instructions to facilitate passing immutable messages between the CPUs on the chip. (Is CPU even the correct term?) And each CPU would need it's own cache. A couple of the CPUs would be processed for I/O handling (PPUs?).

Unfortunately, this approach would require redesigning most software. Whoops!

Re:Flawed HW+ inefficient SW = disappointment

[SurenEnfiajyan]

Or maybe let the software, such as JS engine or OS kernel, to turn off certain optimizations but still benefiting from many others.

Re:Flawed HW+ inefficient SW = disappointment

[thegarbz]

What problem is being created? Our lives are a constant battle of benefits vs downsides. If we cared truly deeply about security we wouldn't be here talking right now with our valuable computers exposed to a foreign network.

Yet we've accepted that risk for the benefit we get. Likewise most people who care about speed will disable Specter mitigation due to the incredibly tiny likelihood of it yielding a successful exploit in most end user scenarios.

Conversely there are some people out there who should definitely not be compromising security in the name of speed or convenience.

Don't issue a CVE

[mschaffer]

Instead of issuing a CVE they should be issuing a "spoiler alert".

Not "just a bit slower" Many times slower!

[ameline]

You will see roughly 1/5th the performance, if you eliminate all speculation and OOO Execution.
(Which means 1/5th the battery life in a mobile device.)

The notion that giving up speculative execution is a reasonable option is deeply flawed.

We need to fix it so that information cannot leak via timing attacks.

Practically speaking we may only be able to reduce the bit rate of the leaks to something very slow, and in combination increasing the size of the secrets we are trying to protect. This will have the effect that meaningful secrets will take years to leak.

Re:Not "just a bit slower" Many times slower!

[thereddaikon]

I think 1/5th the performance is over stating it a bit. There will be an impact but we are realistically looking at more like 25%. CPU's didn't magically get 5x faster when OOO execution was introduced.

Reminder - BULLSHIT

"The researchers also examined Arm and AMD processor cores, but found they did not exhibit similar behavior."

""The leakage can be exploited by a limited set of instructions, which is visible in all Intel generations starting from the 1st generation of Intel Core processors, independent of the OS and also works from within virtual machines and sandboxed environments.""

There is nothing similar in AMD land, and no, there are no functional POC's right now for AMD. ARM yes. Malware waves use POC's that exist, not ones that don't.

Re:Reminder - BULLSHIT

[HiThere]

While your quote is correct, the Grandparent's point was that Intel has been more heavily studied than AMD or ARM, and thus it may be that different attacks of equivalent severity exist for those architectures.

And he's right, but they sure aren't known to exist. Where attacks are known to exist, Intel is either equally vulnerable, more vulnerable, or the only one vulnerable. (Well, OK, I overstate the point. Sorry. Yes, there have been a few attacks specific to the AMD or ARM.)

Re:Reminder - BULLSHIT

With regard to THIS type of attack, AMD is not vulnerable. It's 1:1 a result of Intel's specific instructions. With regard to Spectre, there is a POC for "in-process" corruption on AMD, but critically NOT CROSS-PROCESS.

That really is a key distinction. You'd have to run the exploit IN the process you're trying to get data OUT of. This makes it a PURE EDGE POC, it cannot be readily exploited without other at-level vulns. And since we're talking about CPU Ring-0 process security, other vulns that would allow that would allow ANYTHING else, and doing a Spectre attack in such an environment would be a waste of time as you already have your hooks in.

Intel's problem is that ANY process (even in VM's!) can access ANY other process's memory despite all mitigations, and then on top of that in Spectre, we have this new way of simply jumping through their front door register methodology.

ARM has similar cross-process issues, though different from Intel, and without this new Intel-specific attack in this article.

Short story - Intel is borked. They need to rewrite the way EVERYTHING works under the hood. AMD took a more sanitary approach and either got lucky, has yet to be exposed as swiss cheese, or is actually more secure.

We don't know which of those three is the case because we're not 100% through this entire case study, but either way given the state of POC's that exist NOW, comparing these vulns on AMD to Intel is just not a 1:1 and not close.

You can't have a malware wave without a POC, public or secret. If there are public POC's for trivially unlocking Intel methods, and none such for AMD, that's not comparable.

Re:Reminder - BULLSHIT

[willaien]

"some of these attacks" = the various speculative execution attacks, not the exact attacks in the article, numbnuts. My point was that this is a much further reaching issue than just some handful that have been found in Intel chips. This problem of leaking data via various speed enhancements type of attacks will probably be more widespread than we currently realize, and saying "don't buy intel, buy AMD because it's safe" is a naive and dangerous mindset to be in for this. We should be taking steps to mitigate this entire class of attack.

Re:Intel engineers should seriously consider suici

[lgw]

all because Intel wanted to win the megahertz war of the late '90s.

That's exactly the opposite of true. Speculative execution is entirely about "get the most done with each clock cycle", the opposite of ramping up clock cycles meaninglessly since little gets done on each.

Re:Can security researchers please stop!

[sinij]

I could only assume you are not serious when conflating research into discovering vulnerabilities and existence of vulnerabilities. Wait, are you serious?

Spy vs. Spy

[3seas]

Its like a game to find out what deals the NSA has made with chip makers.

Re:Spy vs. Spy

[jeff4747]

There's no need for the NSA to have a flaw such as this when you have an entire "Management Engine" on the chip.

Re:Intel engineers should seriously consider suici

[gweihir]

And it is also possible that AMD just fucked up a lot less than Intel. Remember that technologically, AMD has been ahead for quite a while (e.g. integrated memory controller, far better multi-core support, etc.), just speed-wise they lagged behind. We do now know where Intel got a significant part of that speed. So while AMD will have some vulnerabilities, it is quite possible that they have a lot less and that what they have is often a lot harder to exploit. This is the verdict on Spectre and Meltdown and there are good reasons to believe this is not an accident, but a systematic difference.

Re:Can security researchers please stop!

[gweihir]

Some people just do not get it. As if vulnerabilities only exist if somebody is looking.

Not Itanium

[OneHundredAndTen]

Interesting how this much-maligned, and all but dead, processor architecture remains immune to these attacks.

DO NOT MAKE FALSE EQUIVOCATIONS PLEASE.

In a word, wrong. AMD is not cross-process vulnerable without another vuln at RING-0, you can only attack in-process. That makes it much less useful - you need to have an existing hacked process to get THAT PROCESS data.

With intel you can get ANY process data from ANY OTHER PROCESS, even in VM's. It's not comparable. This article is a NEW, additional attack that makes it even more trivially exploited.

FTFY

Do both. Render video on Intel, don't use keys

[raymorris]

We can have fast CPUs with speculation execution and all of that, and all of the same security for private keys you'd get with a simple, slow CPU.

An Intel Core i9 is good for transcoding video and cost $500.
An Intel 8051 is secure for handling encryption keys and cost $1.
If you can afford the $500 Core i9, you can afford to add the equivalent of an 8051 for the most security sensitive stuff like generating and handling encryption keys.

That's what chips like the DS5250 are for. They don't have speculative execution or any of that fancy stuff. A Core i9 has billions of transistors. Lots and lots of places for things to leak. Some of the smaller, much simpler CPUs have a few thousand transistors. That's a lot less attack surface. No reason not to have both. The DS5250 is designed for security and it costs about a buck.

Time to haul out my old Cyrix CPU

[rnmartinez]

bonus points if you remember these

Re:Intel engineers should seriously consider suici

[sjames]

Possibly, but so far, Intel HAS shown more flaws, more serious flaws, and a bigger performance hit from the mitigations.

Re:You just proved my point, not yours.

[willaien]

I read this part, in the linked original Spectre disclosure, did you?

Google Project Zero (GPZ) Variant 1 (Bounds Check Bypass or Spectre) is applicable to AMD processors.
GPZ Variant 2 (Branch Target Injection or Spectre) is applicable to AMD processors.
GPZ Variant 3 (Rogue Data Cache Load or Meltdown) is not applicable to AMD processors.

So, at least two variants of Spectre/Meltdown had to be mitigated on AMD platforms. My point still stands, it's not just an Intel thing, and switching to another processor isn't going to protect you from all variations of future attacks, just against a handful of intel specific ones that we know about right now. These are flaws inherent to our current processor designs and will probably take a few generations of processors to make secure.

Re:Can security researchers please stop!

[ReneR]

it was not obvious that I was JOKING?!? :-/

Re:Why does Intel still exist??

[Bandraginus]

Guessing it's because they hold many Defence and NSA contracts. Too big to fail.

Re:Can security researchers please stop!

[gweihir]

Ah, sorry. There are just too many idiots around that would actually say what you did and be dead serious about it.

Re:Israel.

[skids]

Never attribute to malice that which can be explained by stupidity.

It would surprise me if a junior engineer at some point during the development of each
culpable feature set raised his hand and said "you know, this is a slippery slope we are
heading down here that could lead to cross-process exploits." ... and then was told to
sit down, shut up, and get the layout for the ancillary peripheral bus controller validated
under PSPICE and let the senior engineers worry about the big stuff... because after
all we have to get new product out to the marketplace that makes corporate desktop
fleets stop choking on whatever abomination of an application suite firms like PeopleSoft
are making them run.

In general, the problem comes from really smart people designing chips to run spaghetti code
very fast, instead of just optimizing code, because designing chips payed better, because
the people who were paying coders just wanted it to work and were not capable of discerning
good product from bad as long as the payroll went out on time and everyone got their cat pics
posted.