In the wake of major security flaws recently found in Intel processors released over the last 10 years, companies including Apple, Microsoft, Google and others have been scrambling to get security patches out. The flaws were nicknamed Meltdown and Spectre.
Even though the holes were only announced publically last week, tech companies have known about them since they were discovered by Google’s Project Zero in June of last year. Most vendors had software patches out by the time of the announcement but some created even more problems, like Microsoft’s patch that borked some Athlon processors.
Other patches, like the one included in macOS 10.13.2 released last November, took care of Meltdown exploits but still left computers vulnerable to Spectre. Spectre was proving more difficult to remedy for Apple but today, it pushed out another security update to protect users from it.
Apple’s support page on the patch claims Safari and WebKit are now protected from Spectre exploits (CVE-2017-5753 and CVE-2017-5715). Aside from thanking the Google team and others for helping by finding and researching the exploits, details of the fix were light. However, Apple did issue a statement going into greater detail.
"The Meltdown and Spectre issues take advantage of a modern CPU performance feature called speculative execution. Speculative execution improves speed by operating on multiple instructions at once—possibly in a different order than when they entered the CPU.
Meltdown is a name given to an exploitation technique known as CVE-2017-5754 or "rogue data cache load." The Meltdown technique can enable a user process to read kernel memory. Our analysis suggests that it has the most potential to be exploited. Apple released mitigations for Meltdown in iOS 11.2, macOS 10.13.2, and tvOS 11.2. watchOS did not require mitigation.
As of today, iOS, macOS and tvOS (watchOS was not vulnerable) should all be protected from both Meltdown and Spectre as long as the operating systems are up-to-date. Even though the threats have been mitigated, Apple still warns against installing apps from unknown publishers.
"Since exploiting many of these issues requires a malicious app to be loaded on your Mac or iOS device, we recommend downloading software only from trusted sources such as the App Store."