Skip to main content

New Spectre-like bug could mean more performance-degrading patches

Speculative Store Buffer Bypass in 3 minutes

A new CPU bug that shares a number of similarities with the Spectre and Meltdown exploits which came to light earlier this year, has been discovered. Termed the Speculative Store Bypass, it already has fixes and firmware updates that have been shipped out to OEMs to distribute, but there is some concern that the patches will impact processor performance when applied.

Recommended Videos

Speculative Store Bypass is much closer in design to Spectre, in that it exploits the speculative aspect of modern CPUs which helps speed up certain calculations. As Microsoft and Google each discovered in their research though, that speculation is vulnerable to exterior attack and can be exploited to steal data and personal information from a system’s user. With that in mind, new fixes are being developed that will shut down that functionality in affected processors, but as a result, some calculations will take longer to complete — and in some cases, that impact can be significant.

Although the firmware updates are seen as somewhat unnecessary, as earlier improvements to CPU security to prevent against Spectre should provide adequate protection against the new exploit, Intel has provided a full mitigation firmware update as well. The update is currently being distributed by OEM partners, but the patch will not be enabled by default and it will be up to software providers to decide whether they want to use it or not.

“If enabled, we have observed a performance impact of approximately 2-8 percent based on overall scores for benchmarks like SYSmark 2014 SE and SPEC integer rate on client 1 and server 2 test systems,” Intel’s general manager of product assurance and security, Leslie Culberston said.

Considering that this newly announced flaw is harder to exploit than previous variations of the Spectre bug, it may be that most software providers do not choose to leverage the additional protections, as per The Verge. As with Spectre and Meltdown though, permanent fixes for the problem will only be possible through changes to the way the chips are designed and that will involve hardware alterations. Intel has promised that its next-generation CPUs will not be susceptible to these sorts of exploits.

Jon Martindale
Jon Martindale is a freelance evergreen writer and occasional section coordinator, covering how to guides, best-of lists, and…
Apple’s High Power Mode could mean MacBook performance boost
A Macbook Pro sitting on a chair, illuminated with neon lighting.

In January 2020, it emerged that Apple was working on a so-called Pro Mode for its Macs. While that never became an official MacOS feature, it looks like it could be making a return under the name High Power Mode.

According to 9to5Mac, MacOS Monterey beta 8 contains references to High Power Mode in its code. Unlike the Pro Mode leak, there are no details as to how exactly this would work. However, Pro Mode itself could give us some clues.

Read more
HP’s Spectre x360 16 looks like best new Windows laptop 11 yet, with one caveat
The HP Spectre x360 16 on a white desk.

Windows 11 won't be available as an upgrade until 2022, leaving a few months of time for new laptops to take the limelight. HP just announced what might be one of the most compelling new options, the HP Spectre x360 16.

The Spectre x360 line already contains some of the most premium 2-in-1 convertible laptops you can buy, whether that's the portable Spectre x360 14 or the high-powered Spectre x360 15. A 16-inch model, though, is new to the mix -- and Windows 11 is far from the only intriguing new feature.

Read more
Microsoft Edge’s new Performance Mode could make it a more powerful web browser
microsoft edge gets startup boost feature take on chrome new

Microsoft Edge could be getting a bit of a performance boost. Now in testing with the Canary version of the web browser is a new "Performance Mode" option, which helps optimize your browsing experience for speed and efficiency.

Though the feature is currently hidden away in Edge Canary Build 91.0.856.0, Microsoft's official in-browser description for the feature seems quite promising.

Read more