Microsoft's 'Meltdown' Patch For Windows 10 Contains a Fatal Flaw (bleepingcomputer.com) 106
An anonymous reader quotes BleepingComputer: Microsoft's patches for the Meltdown vulnerability have had a fatal flaw all these past months, according to Alex Ionescu, a security researcher with cyber-security firm Crowdstrike. Only patches for Windows 10 versions were affected, the researcher wrote today in a tweet. Microsoft quietly fixed the issue on Windows 10 Redstone 4 (v1803), also known as the April 2018 Update, released on Monday.
"Welp, it turns out the Meltdown patches for Windows 10 had a fatal flaw: calling NtCallEnclave returned back to user space with the full kernel page table directory, completely undermining the mitigation," Ionescu wrote. Ionescu pointed out that older versions of Windows 10 are still running with outdated and bypass-able Meltdown patches.
Wednesday Microsoft issued a security update, but it wasn't to backport the "fixed" Meltdown patches for older Windows 10 versions. Instead, the emergency update fixed a vulnerability in the Windows Host Compute Service Shim (hcsshim) library (CVE-2018-8115) that allows an attacker to remotely execute code on vulnerable systems.
"Welp, it turns out the Meltdown patches for Windows 10 had a fatal flaw: calling NtCallEnclave returned back to user space with the full kernel page table directory, completely undermining the mitigation," Ionescu wrote. Ionescu pointed out that older versions of Windows 10 are still running with outdated and bypass-able Meltdown patches.
Wednesday Microsoft issued a security update, but it wasn't to backport the "fixed" Meltdown patches for older Windows 10 versions. Instead, the emergency update fixed a vulnerability in the Windows Host Compute Service Shim (hcsshim) library (CVE-2018-8115) that allows an attacker to remotely execute code on vulnerable systems.
Worse than containing a potential flaw... (Score:3)
too many of our servers, desktops, and laptops will no longer boot after installing Meltdown/Spectre fixes. The usual symptom is that they show the Windows loading screen then a blank screen.
Re: (Score:2, Funny)
Impenetrably secure! Consider that Meltdown problem fixed!
...Microsoft taking the hit (Score:2)
Indeed, it is probably more secure, I do not understand why Microsoft is trying to fix Intel's problem. Now, they created their own mess and fell in it.
Re: (Score:1)
We bought a bunch of Dell Precision 5520 laptops, and in order to get their wireless drivers to work Dell said we had to install 2018-04 cumulative update. That cause the same symptom you describe. They boot into the Windows loading screen then a black screen. Even though we have ProSupport Plus, they still don't have a solution for us.
Re: (Score:2, Insightful)
Switch to a real operating system? Fedora works fantastically well on my Precision 7510.
Re: (Score:2)
We bought a bunch of Dell Precision 5520 laptops, and in order to get their wireless drivers to work Dell said we had to install 2018-04 cumulative update. That cause the same symptom you describe. They boot into the Windows loading screen then a black screen. Even though we have ProSupport Plus, they still don't have a solution for us.
In the future, maybe choose a hardware vendor with better support.
Re:Worse than containing a potential flaw... (Score:5, Informative)
I think Microsoft views disabling servers as less worse than leaving them with a security problem. Just sucks for us since my company's web site is down after apply new Microsoft updates. I'm probably going to lose my job over this which sucks, but I did put in writing in an email that our staging systems wouldn't boot after installing the latest Windows updates.
Re: Worse than containing a potential flaw... (Score:2)
And it will run the same software flawlessly I suppose.
Re: (Score:1)
First off, Windows is simply trying to fix a hardware problem Intel created, that they cant easily fix, now that's its out of the bag. They are mutually damaging to BOTH their bottom lines.
I doubt new fixed up CPU's will be offered for free or concessional prices for retrofits. I doubt MS can re-write an OS that quickly, because its not a patch, but belts and braces memory quarantining of loose processes all over the shop. No doubt Office is getting broken when hard security is put in place.
We know the dama
Re: (Score:2)
Wait, so why do you even have staging servers, if a fatal problem they show still doesn't stop propagation to production?
Re: (Score:2)
Doesn't windows have some way to quickly recover from a VSS snapshot remotely so you can bring a server back almost instantly if an update fails? It would be almost insane if it didn't ...
Re: Worse than containing a potential flaw... (Score:2)
Re: (Score:2)
I'm probably going to lose my job over this which sucks, but I did put in writing in an email that our staging systems wouldn't boot after installing the latest Windows updates.
If you didn't lose your job over this and you had even a bit of self respect you would quit and find a place to work for that isn't an absolute toilet.
Re:Worse than containing a potential flaw... (Score:5, Insightful)
The thing that really surprises me is that MS is not getting any better at producing software. This is still the same incompetence that could routinely be observed back when MSDOS got patched. They blunder and bumble and mess up, and they still have the by far largest market-share on the desktop and a significant one on the server. Are their customers really this fundamentally stupid?
Re: (Score:2)
With all the extra complexity that has been added through the advancement of hardware? Even if they kept the OS and GUI the same, they would still have to support 64-bit extensions, deeper pipelines, all those different kernel hypervisor modes, paging methods, extra instruction sets. Device drivers are written in C++ using inheritance.
Their customers have built applications and production pipelines either on Linx or on Windows over years if not decades. In turn their customers also use Windows and Exchange
Re: (Score:2)
So? You are expected to learn _faster_ than technology advances and you are expected to keep solved problems solved. Basically everybody besides MS manages that.
Re: Worse than containing a potential flaw... (Score:2)
Let's see now: Active Directory and integration with Azure, hundreds or maybe thousands of software packages that only have a Windows Server version and no Linux equivalent, lots of ASP.NET bespoke applications, plenty of desktop Windows only apps knocking around. I could go on but I'm interested to hear how you could possibly replace all this with a Linux solution. I expect insults and demands for people to be fired though.
Re: (Score:2)
The stupidity of the customers comes from digging themselves deeper and deeper into the MS mess, when it was clear from the outset that it is a mess. Your "argument" just illustrates this point further.
Re: Worse than containing a potential flaw... (Score:2)
As expected, tiresome insults. Just out of interest, is there a Linux equivalent of Active Directory or Group Policy or a mail client that integrates with things like Cisco WebEx or Condeco?
Re: (Score:2)
As expected, you understand nothing. This is not about Linux. It is about MS.
Re: Worse than containing a potential flaw... (Score:2)
You assert that MS customers are stupid, I give you several reasons why people use MS software, you respond with insults and avoiding the question. What should we be using that gives us the same availability of software and ease of management? This is the question my management will ask me and "some guy on Slashdot thinks you're morons" won't go very far.
Re: (Score:2)
You still do not get what I was saying. At all. Instead you defend the bad choices that made MS the mess it is today. That is not smart. At all.
Re: Worse than containing a potential flaw... (Score:2)
Please explain then. I'm not getting anything beyond
when I have tried to show you that availability of applications is why people buy Microsoft. If you have a superior alternative that can run the same software then feel free to tell me what it is.
Re: Worse than containing a potential flaw... (Score:2)
Fuck off dickhead.
Re: (Score:2)
Are you 10? You made a claim so it is you that support that (ridiculous) claim.
State what software for Linux provides the required functionality or just shut up.
Re: (Score:2)
I _literally_ did not even mention Linux anywhere except to say I was not talking about it. Are you functionally illiterate?
Windows and "free to play" (Score:5, Insightful)
The Windows 10 update system feels like "free to play" games, where they actually make you pay more than what you would have paid outright if you made an upfront purchase.
While I like the some of the new features (linux support, more responsive UI, remote xbox streaming, etc), they make sure unwanted cruft comes with it, since you can no longer choose to include or not include many components. Also they took away the excellent Windows Media Center which still has no free alternative.
It is now too late, but I wish we stayed with the WIndows 7 model, where a purchase meant a purchase not a subscription.
Re: (Score:3, Insightful)
It is now too late, but I wish we stayed with the WIndows 7 model, where a purchase meant a purchase not a subscription.
One word of advice: "Linux".
Re: Windows and "free to play" (Score:1)
It is now with Office 365
https://www.computerworld.com/article/3207675/office-software/microsoft-365-business-office-windows-10-in-one-smb-friendly-subscription.html
Re: (Score:2)
Already the contract states, you purchase a license to *USE* Windows for a year, not to own the software.
Re:Windows and "free to play" (Score:5, Informative)
I wish we stayed with the WIndows 7 model, where a purchase meant a purchase not a subscription.
I haven't yet seen a monthly bill for my copy of Windows. People keep mistaking the new Windows model as some radical departure, which it really is not. All it means is that Microsoft is doing away with UPGRADE purchases. You're still required to purchase a new copy of Windows if you buy a new computer.
You get a license for the lifetime of the computer, not your lifetime. So, it's really not as different in reality as "the last version of Window" sounds. I think Microsoft just realized that most consumers didn't purchase upgrades anyhow (only "upgrading" when a new computer was purchased), and maintaining several OS lines at the same time was a pain, so in reality, it's more of a cost-saving measure for them by simply keeping everyone on the same branch of Windows.
Re: (Score:2)
I think Microsoft just realized that most consumers didn't purchase upgrades anyhow (only "upgrading" when a new computer was purchased), and maintaining several OS lines at the same time was a pain, so in reality, it's more of a cost-saving measure for them by simply keeping everyone on the same branch of Windows.
It would be nice if the gaddamned OS actually worked. W10 is touted as the Most secure version ever, and they cannot fix a critical flaw, they are taking systems that work and rendering them or the sodftwre on them inoperable.
The only thing that they have going for them is Stockholm syndrome.
Re: (Score:3)
W10 is touted as the Most secure version ever, and they cannot fix a critical flaw
In their defence, OS level attacks on Windows 10 are very rare, and this critical flaw they cannot fix hasn't actually caused any grief to the point where across most OSes there are a large number of people who either purposely didn't apply the fix or disabled the fix to gain a speed improvement.
Not all critical flaws are critical to all people.
Re: (Score:2)
Send your thanks to Intel as it is they who created the mess in the first place.
We have a model where the hardware is expected to conform to the specification. That specification includes: do not allow unprivileged code to access privileged data.
So Linux, Windows and all other x86 systems using protected mode (~all in use) design their system taking advantage of that fact by mapping privileged data into the virtual address space. This also works in all other current processor architectures: Power, MIPS, ARM
Re: (Score:2)
I haven't yet seen a monthly bill for my copy of Windows.
I merely bolded the relevant part of your sentence. Carry on as usual... for now
Re:Windows and "free to play" (Score:4, Informative)
Indeed. As to playing media, VLC works pretty well, I don't think I have used the WMC in years. (I am still on Win 7 and preparing to move everything except gaming to Linux when Win10 cannot be avoided anymore...)
Re: (Score:1)
You'd be surprised how far Linux gaming has come. I've been stubbornly doing Linux gaming for over 10 years -- back when it sucked -- so I've personally been watching its growth. Even when there are issues, troubleshooting damn near everything is a lot easier in Linux once you get the hang of what tools to use and how to use them.
Yes, there are a lot of big shot publishers acting like assholes when it comes to not supporting Linux (EA, Rockstar, Blizzard, Bethesda...) for whatever reasons we could conject
Re: (Score:2)
I have been using Linux on the desktop and on the server since 1994. I just find that playing the games I want to play on Linux is still not a good idea, even if the gap gets smaller. As the trend is clear, I will eventually switch over, but not now.
Re: Windows and "free to play" (Score:2)
Re: (Score:3)
Not for me, restricting gaming to Linux cuts too many things I want to play. I expect that with Vulcan things will get better over the next 10 years or so. Having a "secure" system and one where there is minimal personal data, no email, no web-surfing, etc. for gaming was a longer-term plan of me anyways and properly restricted, Win10 becomes an acceptable risk for the moment, I think.
Re: (Score:2)
(I am still on Win 7 and preparing to move everything except gaming to Linux when Win10 cannot be avoided anymore...)
If you MUST play the latest games, yes, Windows10 is unavoidable. I changed my mindset from looking at the games I couldn't play to looking at the games I actually could play and then chose which games I would spend my time on. I do fuck around with Windows occasionally just to see what is going on, but my life would be just fine if Windows10 disappeared forever. It would cause me no issues, and, as a matter of fact, it would likely make my life better since all of the software writers would be targeting a
Two similar errors on two different versions (Score:4, Interesting)
First they totally fscked up the Windows 7/Server 2008 Meltdown "fix" allowing every user program access any RAM area they wanted
https://www.theregister.co.uk/... [theregister.co.uk]
And now again they fsck it all up in another version as well by returning the data the patch was supposed to not return. But the way they did fsck it up was totally different than the Windows 7 way. They have so many fuckups, they create different ones for each OS version, cause one fuckup is not enough. Code reuse with audited, well written code would be too easy for two OS kernels that are so much the same obviously. No 7 and 10 are not different. Still the same kernel where even many drivers work fine the same.
These clowns are too stupid to write any OS for more than a non-programmable calculator.
Re: (Score:3)
You trust MS to code for a simple pocket calculator? Don;t you know that excel has been calculating wrongly for decades? Now, the real problem with MS is that everybody else keeps getting better, but MS just keeps getting richer. Which also means that the actual real problem here is the customer. MS has proven to be incapable and incompetent time and again, but people just continue to use and buy their trash.
Re: (Score:3)
These clowns are too stupid to write any OS for more than a non-programmable calculator.
Or maybe this is a fundamentally hard problem to fix depending on how it the entire system is designed. Linux got lucky with their solution to the problem as it nicely piggybacked on work that has been ongoing since 2005 > ASLR then KASLR 4 years ago. Windows 10 was the first MS OS to even experiment with ASLR on the kernel and it had its fair share of bugs so they didn't have a neat and easy foundation for KPTI.
Unlike other OSes (i.e. Linux) which only rolled out the fix to the most recent kernel and th
Re: (Score:1)
Same AC, I forgot about one thing, just small correction. When you wrote: "Unlike other OSes (i.e. Linux)", you obviously meant "Unlike other OSes (e.g. Linux)". (i.e. = that is) (e.g. = for example).
Too many versions of Windows 10 (Score:2)
Re: (Score:2)
And not enough time to test them properly. Microsoft should just support one version of Windows 10, getting rid of superfluous versions like 10S and take the LTSB version and just support that without the six monthly "Windows as a service" updates.
Or better, rewrite the whole thing in Unix.
Re: (Score:2)
And be like Linux, where they're constantly rewriting the GUI framework, adding features no one asked for and removing features people use? Sounds a lot like the Windows model.
Except that it works!
Re: (Score:2)
By "too many versions of Windows 10", surely you mean n>0.
Re: (Score:3, Funny)
What does microsoft pay its engineers for exactly?
They write the code; you test it.
Re: (Score:2)
MS still has engineers?
Re: (Score:2)
Re: (Score:2)
Hehehehe. No surprise then this does not work. The foreign ones that are really good at their job would never take a H1B deal.
Crowdstrike (Score:1)
please die, we're tired of your geopolitical propaganda and fake security
One fatal flaw isn't that bad (Score:2)
Its only been a few days.
I'm pretty sure more fatal flaws will be discovered and targeted quickly. /s
wtf is this? (Score:1)
Apple's developers are a bunch of incompetent that store passwords as plain text files or let you login entering no password. Microsoft's are another bunch of incompetents patching bugs with faulty patches. Wtf is this?
Re: (Score:2)
Stupid customers. The problem is that MS has been getting away with this crap for around 40 years. And not only that, they got filthy rich. Why should they change anything?
Microsoft's downfall began... (Score:5, Informative)
Microsoft's downfall began when they fired most of their QA staff.
Everything has gone to shit since.
http://www.businessinsider.com... [businessinsider.com]
Satya Nadella has fucked things up, but it's not too late to fire him.
Re: (Score:1)
Re: (Score:2)
Short term, it cut 'costs'
Re: (Score:2)
Microsoft's downfall began when they fired most of their QA staff.
I highly doubt their QA staff would have caught this. Everything that has gone to shit has mostly gone to shit in the user space, and even then it's not like the lack of QA staff is the problem as much as their entire process is (e.g. that Chrome locking bug (which also affects Cortana so it's not even MS not caring about the competition) in the latest version of Windows 10 was reported by insiders 2 months before the release on multiple different bug reports, and yet remained unfixed)
QA from Microsoft neve
What a suprise! However, (Score:2)
However, the real problem is, at it's root "windows 10" itself. If you are not the paying customer, you ARE the product. And the tiny percentage of people that have actually paid for 10 are products that paid to be sold.
Does no one else think it odd that you can still reinstall and verify win xp licenses? Or that win 7 licenses are still actively for sale ?
Fatal? (Score:2)