Apple’s M1 chip has an unfixable security flaw baked into the silicon

Apple's vaunted M1 chip has a flaw that can't be mitigated without a redesign. (Image: Apple)

A software developer has uncovered a security flaw in Apple’s vaunted M1 SoC. The only fix for the issue would be for Apple to redesign the chip although the chances of the vulnerability being exploited maliciously are low.

Sanjiv Sathiah, Published 05/29/2021 🇫🇷 🇪🇸 ...

Apple is well known for its stance on privacy and security. This was a message that it has been emphasising quite vehemently in its current court case with Epic, arguing that it should be permitted to maintain total control over the apps installed on an iPhone. As such, it is suprising to learn that there is a vulnerability baked into its custom M1 chip that can only be addressed with a chip revision.

The vulnerability was discovered by developer Hector Martin who has been working on porting Linux so it can run on the M1. Martin explains the issue:

A flaw in the design of the Apple Silicon “M1” chip allows any two applications running under an OS to covertly exchange data between them, without using memory, sockets, files, or any other normal operating system features. This works between processes running as different users and under different privilege levels, creating a covert channel for surreptitious data exchange.

The vulnerability is baked into Apple Silicon chips, and cannot be fixed without a new silicon revision.

The only scenario where Martin believes the M1 flaw could cause a serious issue is if malware has already found its way onto a user’s Mac. This could then communicate with other malware also installed on the same Mac. More likely to occur would be advertising companies exploiting the vulnerability for cross app tracking, something that Apple has been trying to lock out through its software. Martin points out that he has sent his findings to Apple which has acknowledged the issue and has assigned it the code CVE-2021-30747.

Buy the Apple M1 MacBook Air from Amazon.

Source(s)

Hector Martin

Apple iPhone 15 Pro Max flagship (Source: Apple)

iOS 17.0.1, iPadOS 17.0.1, and macOS 13.6 bring critical security patches 09/25/2023

TikTok for iOS is monitoring user input (Source: Cybernews)

TikTok is monitoring all keyboard inputs and taps on iOS 08/20/2022

Cloudflare successfully detected and deterred a 2 Tbps multi-vector DDoS attack. (Image: Cloudflare)

Cloudflare fends off a multi-vector DDoS attack 11/17/2021

Major updates to Safari, Health, Maps and iMessage are inboud for WWDC 2021 according to the Wall Street Journal. (Image: Apple)

Major updates incoming for Safari, Health, Maps and iMessage at WWDC 2021 06/05/2021

Apple is expected to use two displays types on this year's iPhone 13 series. (Image source: Dusan Jovic)

LG and Samsung tipped to supply Apple with OLED displays for iPhone 13 series; 120 Hz and LTPO panels already in production 06/01/2021

The AirPods Max may arrive in new colours this year, but there will not be a second-generation model. (Image source: Ervo Rocks)

Apple reputedly planning to refresh the AirPods Max, but not with a second-generation model 05/31/2021

AliveCor's KardiaBand. (Source: AliveCor)

Apple faces a new lawsuit over claims it stole another company's idea for on-Watch ECGs 05/28/2021

The M1 Apple iMac 24 offers different cooling systems depending on the price point. (Image source: Apple/@fiyin - edited)

Not all M1 iMacs are built the same: Potential buyers of the 2021 Apple iMac 24 should be aware of the cooling system differences that could affect performance 05/27/2021

The A15 Bionic processors will power this year's iPhone models. (Image Source: TekDeeps)

Apple's A15 Bionic processors already being produced at TSMC 05/26/2021

The next MacBook Pro 16 is expected to feature more ports than the current model. (Image source: Antonio De Rosa)

Concept renders show the next Apple MacBook Pro 16's presumed design 05/25/2021

The next-generation Mac mini and the iMac's stand share a similar design. (Image source: Jon Prosser & Ian Zelbo)

New Apple Mac mini renders leak with a revised design and I/O 05/25/2021

Read all 7 comments / answer

Loading Comments

Comment on this article

Intel launches four new Tiger Lake ...

Acer Predator X38 S improves upon t...

Sanjiv Sathiah - Senior Tech Writer - 1467 articles published on Notebookcheck since 2017

I have been writing about consumer technology over the past ten years, previously with the former MacNN and Electronista, and now Notebookcheck since 2017. My first computer was an Apple ][c and this sparked a passion for Apple, but also technology in general. In the past decade, I’ve become increasingly platform agnostic and love to get my hands on and explore as much technology as I can get my hand on. Whether it is Windows, Mac, iOS, Android, Linux, Nintendo, Xbox, or PlayStation, each has plenty to offer and has given me great joy exploring them all. I was drawn to writing about tech because I love learning about the latest devices and also sharing whatever insights my experience can bring to the site and its readership.

contact me via: @t3mporarybl1p

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2021 05 > Apple’s M1 chip has an unfixable security flaw baked into the silicon

Sanjiv Sathiah, 2021-05-29 (Update: 2021-05-29)

Apple’s M1 chip has an unfixable security flaw baked into the silicon

Source(s)

Related Articles