[SECURITY] Hyper-Threading Vulnerability
Pawel Sikora
pluto at agmk.net
Fri May 13 23:50:09 CEST 2005
[ quote: http://lkml.org/lkml/2005/5/13/10 ]
From http://kerneltrap.org/node/5103
Hyper-Threading, as currently implemented on Intel Pentium Extreme
Edition, Pentium 4, Mobile Pentium 4, and Xeon processors, suffers from
a serious security flaw," Colin explains. "This flaw permits local
information disclosure, including allowing an unprivileged user to steal
an RSA private key being used on the same machine. Administrators of
multi-user systems are strongly advised to take action to disable
Hyper-Threading immediately."
More info here:
http://www.daemonology.net/hyperthreading-considered-harmful/
--
The only thing necessary for the triumph of evil
is for good men to do nothing.
- Edmund Burke
More information about the pld-devel-en
mailing list