[Mashiro]

CacheOut - "A new speculative execution attack that is capable of leaking data from Intel CPUs across many security boundaries."

Another security issue has been found in the design of Intels CPUs reaching back to productions from 2018. As the heading says this security hole allows to leak data across many different security measures made by Intel to prevent data leaks. Compared to the old MDS issue this new issue is way more serious because an attack can decide what data he wants to be leaked while MDS only allowed data to be leaked that was loaded into the CPU and was only leakable while it was processed by the CPU.

What is affected? Well, all products from NOW going back to 2018. A list is available here: https://software.intel.com/security-soft...n-sampling

CacheOut page: https://cacheoutattack.com/

Is AMD affected? No, AMD is not affected. Only Intel is affected because only Intel has the TSX Asynchronous Abort (TAA) feature on their CPUs.

Mitigation for the issue is available. Probably at the cost of more perforamnce (not confirmed, yet).