sorry, didn't sent my original mail in plaintext
Google came out with a more detailed explanation:
https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html
Any hardening setting should be enabled? Or code needs to be updated? What is the advise for OpenBSD?
Thanks,
> Subject: Kernel memory leaking on Intel CPUs?
> https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/
>
> "It is understood the bug is present in modern Intel processors produced in the past decade. It allows normal user programs – from database applications to JavaScript in web browsers – to discern to some extent the layout or contents of protected kernel memory areas."
>
> "The fix is to separate the kernel's memory completely from user processes using what's called Kernel Page Table Isolation, or KPTI. At one point, Forcefully Unmap Complete Kernel With Interrupt Trampolines, aka FUCKWIT, was mulled by the Linux kernel team, giving you an idea of how annoying this has been for the developers."
>
> "AMD processors are not subject"
>
> https://www.postgresql.org/message-id/20180102222354.qikjmf7dvnjgbkxe@alap3.anarazel.de
>
> Did anyone hear about this?
No comments:
Post a Comment