ArsTechnica has a concise, well-written article on two recently-disclosed vulnerabilities found in nearly all Intel processors and some AMD and ARM processors. Particularly worrisome is the impact these flaws can have on virtualised environments, which includes cloud-based virtual machines and their hypervisors. Remedying these vulnerabilities will ultimately require replacing the processors. However, near-term software-only solutions have been developed and are already being deployed. This article gives a good, moderately technical overview of the what, who, and how of the flaws and the fixes.
One of the best infosec essays you’ll ever read. Hats off to Quinn Norton for writing this.