EVGA

Hot!New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protected

Author
rjohnson11
EVGA Forum Moderator
  • Total Posts : 78195
  • Reward points : 0
  • Joined: 2004/10/05 12:44:35
  • Location: Europe
  • Status: offline
  • Ribbons : 71
2019/12/10 23:33:43 (permalink)
https://www.techpowerup.com/262024/new-plundervolt-intel-cpu-vulnerability-exploits-vcore-to-fault-sgx-and-steal-protected-data
 
A group of cybersecurity researchers have discovered a new security vulnerability affecting Intel processors, which they've craftily named "Plundervolt," a portmanteau of the words "plunder" and "undervolt." Chronicled under CVE-2019-11157, it was first reported to Intel in June 2019 under its security bug-bounty programme, so it could secretly develop a mitigation. With the 6-month NDA lapsing, the researchers released their findings to the public. Plundervolt is described by researchers as a way to compromise SGX (software guard extensions) protected memory by undervolting the processor when executing protected computations, to a level where SGX memory-encryption no longer protects data. The researchers have also published proof-of-concept code.

Plundervolt is different from "Rowhammer," in that it flips bits inside the processor, before they're written to the memory, so SGX doesn't protect them. Rowhammer doesn't work with SGX-protected memory. Plundervolt requires root privileges as software that let you tweak vCore require ring-0 access. You don't need direct physical access to the target machine, as tweaking software can also be remotely run. Intel put out security advisory SA-00298 and is working with motherboard vendors and OEMs to release BIOS updates that pack a new microcode with a mititagion against this vulnerability. 
 
Looks like Intel has a lot of security work ahead of them

Specs: AMD Ryzen 9 3950X,  Corsair MP600 M.2, 64GB Corsair RGB Dominator,  ASUS Crosshair VIII Hero,  Corsair 1000D, EVGA RTX 2070 FTW 3

Associate Code: H5U80QBH6BH0AXF



#1

13 Replies Related Threads

    Cool GTX
    EVGA Forum Moderator
    • Total Posts : 23616
    • Reward points : 0
    • Joined: 2010/12/12 14:22:25
    • Location: Folding for the Greater Good
    • Status: offline
    • Ribbons : 117
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/11 10:35:29 (permalink)
    Intel SA-00298
     
    "Plundervolt requires root privileges as software that let you tweak vCore require ring-0 access"
     
    just another shrimp on the barbie
     

    RTX Project EVGA X99 FTWK-5930K@4.8GHz 2xEVGA2080Ti EVGA-1200P2  Nibbler EVGA X99 Classified-5960X@4.5GHz 3-GPU Water Loop 1600P2 
    AIO Folding  X99 2x1080Ti FTW3 Hybrid, 1200P
    Thank You for Your Support


    #2
    AuDioFreaK39
    FTW Member
    • Total Posts : 1692
    • Reward points : 0
    • Joined: 2007/06/04 15:53:59
    • Location: Orange County, CA
    • Status: offline
    • Ribbons : 12
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/13 11:52:59 (permalink)
    Does this vulnerability indicate that software-based overclocking will now become a thing of the past as it poses a security risk?

    It took EVGA a few months in 2018 to release BIOS patches for Spectre/Meltdown (CVE- 2017-5753 / CVE- 2017-5715 / CVE- 2017-5754). The CVEs were published in January 2018 and while the EVGA X299 got patched on January 12th (BIOS 1.06), the Z270 and Z370 didn’t get patched until March 26th (BIOS 1.07/1.08), and the X99 didn’t get patched until April 16th (BIOS 2.06).
    #3
    bill1024
    CLASSIFIED ULTRA Member
    • Total Posts : 7992
    • Reward points : 0
    • Joined: 2008/10/18 01:01:10
    • Status: offline
    • Ribbons : 49
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/13 12:23:56 (permalink)
    So if they need, and have root privilege to do this, is it not a little bit too late anyway?
    Seems like a nonissue to me.

     Life is too short to carry a cheap pocket knife

     U25ITA93JV   
     
    #4
    MadmanRB
    iCX Member
    • Total Posts : 329
    • Reward points : 0
    • Joined: 2018/11/28 16:43:21
    • Location: Here
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/13 20:02:31 (permalink)
    Its still not good for servers and such.
     
    Put another point for team red down, ouch.
    post edited by MadmanRB - 2019/12/13 20:04:34


    #5
    kougar
    FTW Member
    • Total Posts : 1868
    • Reward points : 0
    • Joined: 2006/05/08 10:11:19
    • Location: Texas
    • Status: offline
    • Ribbons : 8
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 03:29:28 (permalink)
    I hate this exploit, solely because it validates all those TV show/movie tropes where adding more power miraculously fixes or hacks stuff. Star Trek correctly predicting the future once again!


    Have water, will cool. 
     
    Don't forget to use an Associate Code at checkout for extra savings! Associate Code: FWBXGF17CKOMCIV
    #6
    vegajf51
    iCX Member
    • Total Posts : 425
    • Reward points : 0
    • Joined: 2018/01/07 12:53:12
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 07:11:41 (permalink)
    kougar
    I hate this exploit, solely because it validates all those TV show/movie tropes where adding more power miraculously fixes or hacks stuff. Star Trek correctly predicting the future once again!


     LOL, so true! 
    #7
    CraptacularOne
    Omnipotent Enthusiast
    • Total Posts : 12812
    • Reward points : 0
    • Joined: 2006/06/12 17:20:44
    • Location: Florida
    • Status: offline
    • Ribbons : 177
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 08:18:50 (permalink)
    Sure a lot of these things may not be the best for server farms or such. But for the average person they are irrelevant. If someone already has this level access to your PC you have much bigger problems anyway. 

    i9 9940X @ 4.6Ghz H2O......................Ryzen 9 3900X @ 4.3Ghz
    RTX 2080Ti FE H2O.............................Gigabyte RTX 2080
    Viotek SUW49C 32:9 Ultra Wide............Oculus Rift S
    ASUS Prime X299 Deluxe.....................ASUS TUF Gaming X570 WiFi
    32GB G.Skill Trident Z RGB 3600Mhz.....32GB OLOy Warhawk 3600Mhz
    EVGA G3 SuperNova 1000w..................EVGA G3 SuperNova 750w
    #8
    vegajf51
    iCX Member
    • Total Posts : 425
    • Reward points : 0
    • Joined: 2018/01/07 12:53:12
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 08:48:07 (permalink)
    CraptacularOne
    Sure a lot of these things may not be the best for server farms or such. But for the average person they are irrelevant. If someone already has this level access to your PC you have much bigger problems anyway. 




    While I 100% agree the issue for us consumers is the patch's they must deploy. The patch's usually carry some sort of performance hit which in turn affects us average consumers.
    #9
    howdyho1
    Superclocked Member
    • Total Posts : 232
    • Reward points : 0
    • Joined: 2009/12/01 11:28:11
    • Location: near the mountains
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 08:56:45 (permalink)
    Regarding Spectre/Meltdown patches. That timeline was a function of when Intel released microcode updates. Older processors were later in the schedule.


    i9-7900X | Asus ROG STRIX X299E | WIP cooling | EVGA SuperNOVA 1600 P2 | 32G Trident Z 4133Ghz Quad DDR4 | 2x Samsung 970 EVO 2TB NVME | 2x 4TB WD Black | DG-87 | 3x LG 27" 4k | 2-way SLI EVGA Titan Black SC  | Corsair K95 RGB Platinum | Steelseries Rival 600 
     
    Heatware: https://www.heatware.com/u/96922/to
     
    #10
    ty_ger07
    Insert Custom Title Here
    • Total Posts : 16339
    • Reward points : 0
    • Joined: 2008/04/10 23:48:15
    • Location: traveler
    • Status: online
    • Ribbons : 166
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 09:11:06 (permalink)
    Keep in mind that Intel's 10xxx series CPUs are slower than their 9xxx series CPUs due to in-silicon vulnerability mitigation.  This confirms the concern of the trickle-down effect affecting consumers and enthusiasts years later.  As AuDioFreaK39 said, does this indicate that overclocking support on Intel's CPUs could be affected in the future?
    #11
    z999z3mystorys
    CLASSIFIED Member
    • Total Posts : 3869
    • Reward points : 0
    • Joined: 2008/11/29 06:46:22
    • Location: at my current location
    • Status: offline
    • Ribbons : 11
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 12:55:08 (permalink)
    another exploit, just Plunderful... er wonderful.


     
     
    #12
    GTXJackBauer
    Omnipotent Enthusiast
    • Total Posts : 8408
    • Reward points : 0
    • Joined: 2010/04/19 22:23:25
    • Location: (EVGA Discount) Associate Code : LMD3DNZM9LGK8GJ
    • Status: offline
    • Ribbons : 44
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/15 01:06:59 (permalink)
    z999z3mystorys
    another exploit, just Plunderful... er wonderful.




    Good one.    

    Use this Associate Code at your checkouts to get 5%-10% discounts on all your EVGA purchases:
    LMD3DNZM9LGK8GJ
    *Thanks for your support!*
    Use this Rewards Code below when registering your EVGA products. 
    (Invoice needs to be uploaded.)
    #13
    kougar
    FTW Member
    • Total Posts : 1868
    • Reward points : 0
    • Joined: 2006/05/08 10:11:19
    • Location: Texas
    • Status: offline
    • Ribbons : 8
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/16 01:38:44 (permalink)
    Considering Intel's fix was to lock voltages, I would tend to guess it would have repercussions on overclocking consumer chips. Even the 9900's support SGX, so by definition they would need the hotfixes too. 


    Have water, will cool. 
     
    Don't forget to use an Associate Code at checkout for extra savings! Associate Code: FWBXGF17CKOMCIV
    #14
    Jump to:
  • Back to Mobile