CVE-2019-14615 Graphics Vulnerability, a.k.a. iGPU Leak
Enables remote websites to fingerprint the system more easily via WebGL (not enabled in Tor Browser/ not accessibe in VMs at least KVM ones)
Allows malicious code running locally to steal AES keys.
Intel’s fix absolutely destroys their GPU performance. You should really move away from Intel hardware.
Also: Intel’s VT-x is well known to be vulnerable (L1TF), and is currently impossible to mitigate when HT is enabled.
TB doesn’t actually disable WebGL but mitigates the fingerprinting risk anyway. See part 9 of https://2019.www.torproject.org/projects/torbrowser/design/#fingerprinting-defenses
More reasons to not use Intel is that their CPUs are far more vulnerable to MDS exploits and has stupid things like the ME which substantially increases attack surface.
Is there somewhere where one can find a list of affected processors? I keep seeing “Gen 7 and Gen9” Does that mean every single one between 7 and 9? And is this referring to the “UHD 620” built-in graphics? I swear you can’t even blink and Intel releases news of another f***up.
At this point one should ask what isn’t affected:
Thanks for the link.
What a disaster.