ืคึผืจืึธื”ืึธืกื˜ืขืจ > ื‘ืœืึธื’ > ืื™ื ื˜ืขืจื ืขื˜ ื ื™ื™ึทืขืก > ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ ืื™ืŸ ื“ื™ ืœื™ื ื•ืงืก 6.2 ืงืขืจืŸ ื•ื•ืึธืก ืงืขืŸ ื‘ื™ื™ืคึผืึทืก ืกืคึผืขืงื˜ืขืจ ื•ื• 2 ื‘ืึทืคืึทืœืŸ ืฉื•ืฅ

ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ ืื™ืŸ ื“ื™ ืœื™ื ื•ืงืก 6.2 ืงืขืจืŸ ื•ื•ืึธืก ืงืขืŸ ื‘ื™ื™ืคึผืึทืก ืกืคึผืขืงื˜ืขืจ ื•ื• 2 ื‘ืึทืคืึทืœืŸ ืฉื•ืฅ

ื ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ ืื™ื– ื™ื™ื“ืขื ืึทืคื™ื™ื“ ืื™ืŸ ื“ื™ Linux 6.2 ืงืขืจืŸ (CVE-2023-1998) ื•ื•ืึธืก ื“ื™ืกื™ื™ื‘ืึทืœื– ืฉื•ืฅ ืงืขื’ืŸ ืกืคึผืขืงื˜ืขืจ ื•ื• 2 ืื ืคืืœืŸ ื•ื•ืึธืก ืœืึธื–ืŸ ืึทืงืกืขืก ืฆื• ื“ืขืจ ื–ื›ึผืจื•ืŸ ืคื•ืŸ ืื ื“ืขืจืข ืคึผืจืึทืกืขืกืึทื– ืคืœื™ืกื ื“ื™ืง ืื•ื™ืฃ ืคืึทืจืฉื™ื“ืขื ืข ืกืžื˜ ืึธื“ืขืจ ื”ื™ืคึผืขืจ ืคึฟืขื“ืขื, ืึธื‘ืขืจ ืื•ื™ืฃ ื“ืขืจ ื–ืขืœื‘ื™ืงืขืจ ื’ืฉืžื™ื•ืช ืคึผืจืึทืกืขืกืขืจ ื”ืึทืจืฅ. ื“ื™ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™, ืฆื•ื•ื™ืฉืŸ ืื ื“ืขืจืข, ืงืขื ืขืŸ ื–ื™ื™ืŸ ื’ืขื•ื•ื™ื™ื ื˜ ืฆื• ืึธืจื’ืึทื ื™ื–ื™ืจืŸ ื“ืึทื˜ืŸ ืœื™ืงืึทื“ื–ืฉ ืฆื•ื•ื™ืฉืŸ ื•ื•ื™ืจื˜ื•ืึทืœ ืžืืฉื™ื ืขืŸ ืื™ืŸ ื•ื•ืึธืœืงืŸ ืกื™ืกื˜ืขืžืขืŸ. ื“ื™ ืึทืจื•ื™ืกื’ืขื‘ืŸ ืึทืคืขืงืฅ ื‘ืœื•ื™ื– ื“ื™ Linux 6.2 ืงืขืจืŸ ืื•ืŸ ืื™ื– ื’ืขืคึฟื™ืจื˜ ื“ื•ืจืš ืึท ืคืึทืœืฉ ื™ืžืคึผืœืึทืžืขื ื˜ื™ื™ืฉืึทืŸ ืคื•ืŸ ืึทืคึผื˜ืึทืžืึทื–ื™ื™ืฉืึทื ื– ื“ื™ื–ื™ื™ื ื“ ืฆื• ืจืขื“ื•ืฆื™ืจืŸ ื“ื™ ื‘ืึทื˜ื™ื™ื˜ื™ืง ืึธื•ื•ื•ืขืจื›ืขื“ ื•ื•ืขืŸ ืึทืคึผืœื™ื™ื™ื ื’ ืฉื•ืฅ ืงืขื’ืŸ Specter v2. ื“ื™ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ ืื™ื– ื’ืขื•ื•ืขืŸ ืคืึทืจืคืขืกื˜ื™ืงื˜ ืื™ืŸ ื“ื™ ื™ืงืกืคึผืขืจืžืขื ืึทืœ ืฆื•ื•ื™ื™ึทื’ ืคื•ืŸ ื“ื™ Linux 6.3 ืงืขืจืŸ.

ืื™ืŸ ื‘ืึทื ื™ืฆืขืจ ืคึผืœืึทืฅ, ืฆื• ื‘ืึทืฉื™ืฆืŸ ืงืขื’ืŸ ืกืคึผืขืงื˜ืขืจ ืื ืคืืœืŸ, ืคึผืจืึทืกืขืกืึทื– ืงืขื ืขืŸ ืกืึทืœืขืงื˜ื™ื•ื•ืœื™ ื“ื™ืกื™ื™ื‘ืึทืœ ืกืคึผืขืงื•ืœืึทื˜ื™ื•ื•ืข ืœื™ืžืขื“ ื“ื•ืจื›ืคื™ืจื•ื ื’ ืžื™ื˜ ืคึผืจืงื˜ืœ PR_SET_SPECULATION_CTRL ืึธื“ืขืจ ื ื•ืฆืŸ ืกืขืงืึธืžืคึผ-ื‘ืื–ื™ืจื˜ ืกื™ืกื˜ืขื ืจื•ืคืŸ ืคึฟื™ืœื˜ืจื™ืจื•ื ื’. ืœื•ื™ื˜ ื“ื™ ืจื™ืกืขืจื˜ืฉืขืจื– ื•ื•ืึธืก ื™ื™ื“ืขื ืึทืคื™ื™ื“ ื“ืขื ืคึผืจืึธื‘ืœืขื, ืคืึทืœืฉ ืึทืคึผื˜ืึทืžืึทื–ื™ื™ืฉืึทืŸ ืื™ืŸ ื“ื™ 6.2 ืงืขืจืŸ ืœื™ื ืงืก ื“ื™ ื•ื•ื™ืจื˜ื•ืึทืœ ืžืืฉื™ื ืขืŸ ืคื•ืŸ ืœืคึผื—ื•ืช ืื™ื™ืŸ ื’ืจื•ื™ืก ื•ื•ืึธืœืงืŸ ืฉืคึผื™ื™ึทื–ืขืจ ืึธืŸ ื’ืขื”ืขืจื™ืง ืฉื•ืฅ, ื˜ืจืึธืฅ ื“ื™ ื™ื ืงืœื•ื–ืฉืึทืŸ ืคื•ืŸ ื“ื™ ืกืคึผืขืงื˜ืจืข-BTI ื‘ืึทืคืึทืœืŸ ื‘ืœืึทืงื™ื ื’ ืžืึธื“ืข ื“ื•ืจืš ืคึผืจืงื˜ืœ. ื“ื™ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ ืื•ื™ืš ืžืึทื ืึทืคืขืกืฅ ื–ื™ืš ืื•ื™ืฃ ืจืขื’ื•ืœืขืจ ืกืขืจื•ื•ืขืจืก ืžื™ื˜ ื“ื™ 6.2 ืงืขืจืŸ, ื•ื•ืึธืก ื–ืขื ืขืŸ ื‘ื•ื˜ื™ื“ ืžื™ื˜ ื“ื™ "spectre_v2 = ibrs" ื‘ืึทืฉื˜ืขื˜ื™ืงืŸ.

ื“ื™ ืขืกืึทื ืก ืคื•ืŸ ื“ื™ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ ืื™ื– ืึทื– ื•ื•ืขืŸ ื˜ืฉื•ื–ื™ื ื’ IBRS ืึธื“ืขืจ eIBRS ืฉื•ืฅ ืžืึธื“ืขืก, ื“ื™ ืึธืคึผื˜ื™ืžื™ื–ืึทื˜ื™ืึธื ืก ื’ืขืžืื›ื˜ ืคืึทืจืงืจื™ืคึผืœื˜ ื“ื™ ื ื•ืฆืŸ ืคื•ืŸ ื“ื™ STIBP (Single Thread Indirect Branch Predictors) ืžืขืงืึทื ื™ื–ืึทื, ื•ื•ืึธืก ืื™ื– ื ื™ื™ื˜ื™ืง ืฆื• ืคืึทืจืฉืคึผืึทืจืŸ ืœื™ืงืก ื•ื•ืขืŸ ื ื™ืฆืŸ ืกื™ื™ืžืึทืœื˜ื™ื™ื ื™ืึทืก ืžื•ืœื˜ื˜ื”ืจืขืึทื“ื™ื ื’ ื˜ืขื›ื ืึธืœืึธื’ื™ืข (SMT ืึธื“ืขืจ Hyper-Threading) ). ืื™ืŸ ื“ืขืจ ื–ืขืœื‘ื™ืงืขืจ ืฆื™ื™ื˜, ื‘ืœื•ื™ื– ื“ื™ eIBRS ืžืึธื“ืข ื’ื™ื˜ ืฉื•ืฅ ืงืขื’ืŸ ืœื™ืงืึทื“ื–ืฉ ืฆื•ื•ื™ืฉืŸ ืคึฟืขื“ืขื, ืึธื‘ืขืจ ื ื™ืฉื˜ ื“ื™ IBRS ืžืึธื“ืข, ื•ื•ื™ื™ึทืœ ืžื™ื˜ ืื™ื ื“ื™ IBRS ื‘ื™ืกืœ, ื•ื•ืึธืก ื’ื™ื˜ ืฉื•ืฅ ืงืขื’ืŸ ืœื™ืงืก ืฆื•ื•ื™ืฉืŸ ืœืึทื“ื–ืฉื™ืงืึทืœ ืงืึธืจืขืก, ืื™ื– ืงืœื™ืจื“ ืคึฟืึทืจ ืคืึธืจืฉื˜ืขืœื•ื ื’ ืกื™ื‘ื•ืช ื•ื•ืขืŸ ืงืึธื ื˜ืจืึธืœ ืงืขืจื˜ ืฆื• ื‘ืึทื ื™ืฆืขืจ ืคึผืœืึทืฅ, ื•ื•ืึธืก ืžืื›ื˜ ื‘ืึทื ื™ืฆืขืจ ืคึผืœืึทืฅ ืคึฟืขื“ืขื ื ื™ืฉื˜ ืคึผืจืึธื˜ืขืงื˜ืขื“ ืคื•ืŸ ืื ืคืืœืŸ ืคื•ืŸ ื“ื™ Specter v2 ืงืœืึทืก.

ืžืงื•ืจ: opennet.ru

ืœื™ื™ื’ืŸ ืึท ื‘ืึทืžืขืจืงื•ื ื’