Results 1 to 14 of 14

Thread: Nvidia releases security update driver to for its GPUs

  1. #1
    £1000 Tesco Value Beer CAT-THE-FIFTH's Avatar
    Join Date
    Aug 2006
    Location
    Moosetopia
    Posts
    28,361
    Thanks
    3,136
    Thanked
    4,369 times in 3,388 posts
    • CAT-THE-FIFTH's system
      • Motherboard:
      • Less E-PEEN
      • CPU:
      • Massive E-PEEN
      • Memory:
      • RGB E-PEEN
      • Storage:
      • Not in any order
      • Graphics card(s):
      • EVEN BIGGER E-PEEN
      • PSU:
      • OVERSIZED
      • Case:
      • UNDERSIZED
      • Operating System:
      • DOS 6.22
      • Monitor(s):
      • NOT USUALLY ON....WHEN I POST
      • Internet:
      • FUNCTIONAL

    Nvidia releases security update driver to for its GPUs

    If you own a Nvidia GPU its suggested you download this driver as apparently Nvidia drivers are vulnerable to Spectre:

    http://www.techradar.com/news/spectr...graphics-cards
    http://nvidia.custhelp.com/app/answers/detail/a_id/4611


    Those despicable Elk,stealing the pond weed!

  2. Received thanks from:

    adidan (10-01-2018)

  3. #2
    Senior Member
    Join Date
    Aug 2008
    Posts
    458
    Thanks
    26
    Thanked
    59 times in 41 posts
    • adidan's system
      • Motherboard:
      • Asus P8Z77-M
      • CPU:
      • Intel i7 3770
      • Memory:
      • 16Gb Mushkin
      • Storage:
      • 2x240Gb HyperX Savage / 2x525Gb Crucial MX300
      • Graphics card(s):
      • Zotac GTX1080 Mini
      • PSU:
      • 750W EVGA G3
      • Case:
      • Antec ISK-600M
      • Operating System:
      • W7 64 Bit
      • Monitor(s):
      • 27" 1440p Iiyama XUB2792QSU

    Re: Nvidia releases security update driver to for its GPUs

    At this rate I'll be told I have to patch my pc desk too.
    Grab that. Get that. Check it out. Bring that here. Grab anything useful. Take anything good.

  4. #3
    BOFH Bagnaj97's Avatar
    Join Date
    Jan 2011
    Location
    Kent
    Posts
    1,243
    Thanks
    455
    Thanked
    396 times in 232 posts
    • Bagnaj97's system
      • Motherboard:
      • Asus B150M-A
      • CPU:
      • Intel i7-6700
      • Memory:
      • 2x8GB DDR4 2133
      • Storage:
      • Sandisk Ultra II 480gb, Plextor M5S 256G SSD, 2x 2TB HDDs
      • Graphics card(s):
      • Sapphire RX480 Nitro+ OC 8GB
      • PSU:
      • NZXT Hale90+ 550w
      • Case:
      • Xigmatek Alfar
      • Operating System:
      • Ubuntu/Windows 10
      • Monitor(s):
      • AOC I2367Fh
      • Internet:
      • 71/18 MBps down/up Plus.net FTTC

    Re: Nvidia releases security update driver to for its GPUs

    Quote Originally Posted by adidan View Post
    At this rate I'll be told I have to patch my pc desk too.
    Is your pc desk doing speculative execution?

    I wonder if Radeons are also affected?

  5. #4
    RGB Champion Ttaskmaster's Avatar
    Join Date
    Nov 2013
    Location
    Reading, UK
    Posts
    4,054
    Thanks
    137
    Thanked
    421 times in 349 posts
    • Ttaskmaster's system
      • Motherboard:
      • Asus X99-PRO
      • CPU:
      • i7 5820K J-batch o/c to 4.5GHz
      • Memory:
      • 16GB Corsair DDR4 somethingorother
      • Storage:
      • Samsung Evo 120GB and Seagate Baracuda 2TB
      • Graphics card(s):
      • Gigabyte G1 GTX980Ti
      • PSU:
      • EVGA Supernova G2 1000W
      • Case:
      • Phankecks Enthoo Luxe perspex window
      • Operating System:
      • Win10 64 Home
      • Monitor(s):
      • Acer Predator XB270HU 1440 IPS GSync
      • Internet:
      • BT 0.7Mbps 'In The Sticks' version

    Re: Nvidia releases security update driver to for its GPUs

    Either you download a stack of fixes that make your PC secure but slow as dialup... or you buy the latest tech and make these companies an absolute fortune.

    Pretty cunning, don'tcha think?

  6. #5
    Not a good person scaryjim's Avatar
    Join Date
    Jan 2009
    Location
    Manchester
    Posts
    14,818
    Thanks
    1,167
    Thanked
    2,169 times in 1,796 posts
    • scaryjim's system
      • Motherboard:
      • HP Pavilion
      • CPU:
      • A10 4600M
      • Memory:
      • 2x 4GB DDR3-1600 SODIMM
      • Storage:
      • 1TB HDD
      • Graphics card(s):
      • Radeon HD7660G (IGP)
      • PSU:
      • Battery/HP 19v brick
      • Case:
      • HP Pavilion G6
      • Operating System:
      • Windows 10
      • Monitor(s):
      • 15" 1366x768 laptop panel

    Re: Nvidia releases security update driver to for its GPUs

    Love the fact that techradar have publish an "update" at the top of the article apologising for mistakenly thinking nvidia hardware was affected, but then left the original article unchanged. Someone just scanning the page might still take away the message that their GPU is vulnerable to the attacks.

    The driver update is simply a further software mitigation against Spectre attacks against the CPU. I'm not sure if that means that OS kernel patches can't cover all the attack vectors, or if this is just a bit of belt-and-braces from nvidia. But the security update is not for a vulnerability in GPUs. It's for the known vulnerability in CPUs.

  7. #6
    root Member DanceswithUnix's Avatar
    Join Date
    Jan 2006
    Location
    In the middle of a core dump
    Posts
    8,987
    Thanks
    411
    Thanked
    890 times in 760 posts
    • DanceswithUnix's system
      • Motherboard:
      • M5A-97 EVO R2.0
      • CPU:
      • FX-8350
      • Memory:
      • 16GB ECC 1333
      • Storage:
      • 500GB Linux, 1TB Games (Win 10)
      • Graphics card(s):
      • Asus Strix RX Vega 56
      • PSU:
      • 650W Corsair TX
      • Case:
      • Antec 300
      • Operating System:
      • Fedora 28 + Win 10 Pro 64 (yuk)
      • Monitor(s):
      • Benq XL2730Z 1440p + Samsung 2343BW 2048x1152
      • Internet:
      • Zen 80Mb/20Mb VDSL

    Re: Nvidia releases security update driver to for its GPUs

    Time for new benchmarks then, again

  8. #7
    £1000 Tesco Value Beer CAT-THE-FIFTH's Avatar
    Join Date
    Aug 2006
    Location
    Moosetopia
    Posts
    28,361
    Thanks
    3,136
    Thanked
    4,369 times in 3,388 posts
    • CAT-THE-FIFTH's system
      • Motherboard:
      • Less E-PEEN
      • CPU:
      • Massive E-PEEN
      • Memory:
      • RGB E-PEEN
      • Storage:
      • Not in any order
      • Graphics card(s):
      • EVEN BIGGER E-PEEN
      • PSU:
      • OVERSIZED
      • Case:
      • UNDERSIZED
      • Operating System:
      • DOS 6.22
      • Monitor(s):
      • NOT USUALLY ON....WHEN I POST
      • Internet:
      • FUNCTIONAL

    Re: Nvidia releases security update driver to for its GPUs

    Quote Originally Posted by scaryjim View Post
    Love the fact that techradar have publish an "update" at the top of the article apologising for mistakenly thinking nvidia hardware was affected, but then left the original article unchanged. Someone just scanning the page might still take away the message that their GPU is vulnerable to the attacks.

    The driver update is simply a further software mitigation against Spectre attacks against the CPU. I'm not sure if that means that OS kernel patches can't cover all the attack vectors, or if this is just a bit of belt-and-braces from nvidia. But the security update is not for a vulnerability in GPUs. It's for the known vulnerability in CPUs.
    Emm,I linked to the Nvidia webpage too,plus I seriously doubt Intel,AMD or Nvidia are releasing security fixes if there was NO issue anyway. You only have to look at the last 10 years of any of these companies to go past all the PR guff.

    Considering Nvidia relies far more on CPU based scheduling than AMD does,I suspect there might be an issue they have discovered. I seriously doubt Nvidia really gives a monkeys about patching issues with Intel CPUs considering the history they have had in the past.


    Those despicable Elk,stealing the pond weed!

  9. #8
    Not a good person scaryjim's Avatar
    Join Date
    Jan 2009
    Location
    Manchester
    Posts
    14,818
    Thanks
    1,167
    Thanked
    2,169 times in 1,796 posts
    • scaryjim's system
      • Motherboard:
      • HP Pavilion
      • CPU:
      • A10 4600M
      • Memory:
      • 2x 4GB DDR3-1600 SODIMM
      • Storage:
      • 1TB HDD
      • Graphics card(s):
      • Radeon HD7660G (IGP)
      • PSU:
      • Battery/HP 19v brick
      • Case:
      • HP Pavilion G6
      • Operating System:
      • Windows 10
      • Monitor(s):
      • 15" 1366x768 laptop panel

    Re: Nvidia releases security update driver to for its GPUs

    Quote Originally Posted by CAT-THE-FIFTH View Post
    Emm,I linked to the Nvidia webpage too ...
    Yeah, not questioning your input CAT, just pointing out that people scanning the techradar story might skip the update. Responsible journalism would involve changing the incorrect content in the actual story, not just tagging on an "oops" at the top.

    My impression when this first came out was that the OS kernel patches should mitigate against the threats sufficiently by improving the segregation of data during speculative execution, but if some software could be vulnerable even after patching it's a much bigger issue. Although this could always be nvidia offering some protection for users who decide not to patch their OS...? *shrug* basically the thing's a phenomenal charlie foxtrot...

  10. #9
    £1000 Tesco Value Beer CAT-THE-FIFTH's Avatar
    Join Date
    Aug 2006
    Location
    Moosetopia
    Posts
    28,361
    Thanks
    3,136
    Thanked
    4,369 times in 3,388 posts
    • CAT-THE-FIFTH's system
      • Motherboard:
      • Less E-PEEN
      • CPU:
      • Massive E-PEEN
      • Memory:
      • RGB E-PEEN
      • Storage:
      • Not in any order
      • Graphics card(s):
      • EVEN BIGGER E-PEEN
      • PSU:
      • OVERSIZED
      • Case:
      • UNDERSIZED
      • Operating System:
      • DOS 6.22
      • Monitor(s):
      • NOT USUALLY ON....WHEN I POST
      • Internet:
      • FUNCTIONAL

    Re: Nvidia releases security update driver to for its GPUs

    Quote Originally Posted by scaryjim View Post
    Yeah, not questioning your input CAT, just pointing out that people scanning the techradar story might skip the update. Responsible journalism would involve changing the incorrect content in the actual story, not just tagging on an "oops" at the top.

    My impression when this first came out was that the OS kernel patches should mitigate against the threats sufficiently by improving the segregation of data during speculative execution, but if some software could be vulnerable even after patching it's a much bigger issue. Although this could always be nvidia offering some protection for users who decide not to patch their OS...? *shrug* basically the thing's a phenomenal charlie foxtrot...
    I suppose as mentioned earlier,will AMD RTG release a security update too??


    Those despicable Elk,stealing the pond weed!

  11. #10
    root Member DanceswithUnix's Avatar
    Join Date
    Jan 2006
    Location
    In the middle of a core dump
    Posts
    8,987
    Thanks
    411
    Thanked
    890 times in 760 posts
    • DanceswithUnix's system
      • Motherboard:
      • M5A-97 EVO R2.0
      • CPU:
      • FX-8350
      • Memory:
      • 16GB ECC 1333
      • Storage:
      • 500GB Linux, 1TB Games (Win 10)
      • Graphics card(s):
      • Asus Strix RX Vega 56
      • PSU:
      • 650W Corsair TX
      • Case:
      • Antec 300
      • Operating System:
      • Fedora 28 + Win 10 Pro 64 (yuk)
      • Monitor(s):
      • Benq XL2730Z 1440p + Samsung 2343BW 2048x1152
      • Internet:
      • Zen 80Mb/20Mb VDSL

    Re: Nvidia releases security update driver to for its GPUs

    Quote Originally Posted by CAT-THE-FIFTH View Post
    I suppose as mentioned earlier,will AMD RTG release a security update too??
    It is an interesting question.

    I did some digging around, I didn't realise that modern Windows drivers were back in userland (and have been for some time) so that would explain the minimal performance impact of Meltdown on gaming graphics. There will always be some kernel mode hardware setup though, so I guess that is what they have messed with.

    If the driver is for something USB or network connected then there won't be any hardware setup so hopefully most modern hardware will be OK. Stuff that plugs into a motherboard slot like graphics cards, do they all need patching?

    Edit: My current quest for a graphics card was edging towards a 1070ti, but this makes me want to stick with the Linux AMD open source stack still. I should just learn to be happy with what I have shouldn't I...
    Last edited by DanceswithUnix; 11-01-2018 at 04:46 PM.

  12. #11
    Not a good person scaryjim's Avatar
    Join Date
    Jan 2009
    Location
    Manchester
    Posts
    14,818
    Thanks
    1,167
    Thanked
    2,169 times in 1,796 posts
    • scaryjim's system
      • Motherboard:
      • HP Pavilion
      • CPU:
      • A10 4600M
      • Memory:
      • 2x 4GB DDR3-1600 SODIMM
      • Storage:
      • 1TB HDD
      • Graphics card(s):
      • Radeon HD7660G (IGP)
      • PSU:
      • Battery/HP 19v brick
      • Case:
      • HP Pavilion G6
      • Operating System:
      • Windows 10
      • Monitor(s):
      • 15" 1366x768 laptop panel

    Re: Nvidia releases security update driver to for its GPUs

    Quote Originally Posted by CAT-THE-FIFTH View Post
    I suppose as mentioned earlier,will AMD RTG release a security update too??
    I think the bigger question is "are AMD graphics drivers a potential channel for the vulnerabilities?". As you say, nvidia does more scheduling etc. in software than AMD, so it may be that AMD's drivers don't present the same kind of risk...

  13. #12
    Senior Member
    Join Date
    Aug 2008
    Posts
    458
    Thanks
    26
    Thanked
    59 times in 41 posts
    • adidan's system
      • Motherboard:
      • Asus P8Z77-M
      • CPU:
      • Intel i7 3770
      • Memory:
      • 16Gb Mushkin
      • Storage:
      • 2x240Gb HyperX Savage / 2x525Gb Crucial MX300
      • Graphics card(s):
      • Zotac GTX1080 Mini
      • PSU:
      • 750W EVGA G3
      • Case:
      • Antec ISK-600M
      • Operating System:
      • W7 64 Bit
      • Monitor(s):
      • 27" 1440p Iiyama XUB2792QSU

    Re: Nvidia releases security update driver to for its GPUs

    Downloaded latest drivers, had first ever kernel stopped and restarted. Wasn't doing anything at the time.

    Super.
    Grab that. Get that. Check it out. Bring that here. Grab anything useful. Take anything good.

  14. #13
    Not a good person scaryjim's Avatar
    Join Date
    Jan 2009
    Location
    Manchester
    Posts
    14,818
    Thanks
    1,167
    Thanked
    2,169 times in 1,796 posts
    • scaryjim's system
      • Motherboard:
      • HP Pavilion
      • CPU:
      • A10 4600M
      • Memory:
      • 2x 4GB DDR3-1600 SODIMM
      • Storage:
      • 1TB HDD
      • Graphics card(s):
      • Radeon HD7660G (IGP)
      • PSU:
      • Battery/HP 19v brick
      • Case:
      • HP Pavilion G6
      • Operating System:
      • Windows 10
      • Monitor(s):
      • 15" 1366x768 laptop panel

    Re: Nvidia releases security update driver to for its GPUs

    Something's just occurred to me while replying to another thread:

    As CAT pointed out, nvidia moved heavily towards software scheduling for their gaming line. It seems to me that that could be a reasonable explanation for why an nvidia GPU driver might provide an exploitable channel for attack.

    But what if the OS kernel mitigations - which we know will have performance implications - hit nvidia's software scheduling hard? Could the latest "security" patch actually be an attempt to mitigate the performance hit of other security updates as well?

  15. #14
    Senior Member
    Join Date
    Dec 2013
    Posts
    2,329
    Thanks
    259
    Thanked
    277 times in 195 posts

    Re: Nvidia releases security update driver to for its GPUs

    I'm not sure it would be noticeable as (afaik) the scheduler feeds data to the SMMs pipelines on the GPU and normally there's already a certain amount of jobs waiting in those queues, it may effect latency but probably not throughput, however as there's already a degree of latency involved in the time it takes for a job to reach the front of the queue and be processed adding latency to that may not effect the final outcome, effectively adding jobs to each queue would take longer but they'd still have to wait.

    Of course that's just based on my laymens understanding of how Nvidia's normal (driver/software) scheduler, SMM queues and dispatching of jobs operates.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •