[SECURITY] Hyper-Threading Vulnerability
Pawel Sikora
pluto w agmk.net
Pią, 13 Maj 2005, 23:50:09 CEST
[ quote: http://lkml.org/lkml/2005/5/13/10 ]
From http://kerneltrap.org/node/5103
Hyper-Threading, as currently implemented on Intel Pentium Extreme
Edition, Pentium 4, Mobile Pentium 4, and Xeon processors, suffers from
a serious security flaw," Colin explains. "This flaw permits local
information disclosure, including allowing an unprivileged user to steal
an RSA private key being used on the same machine. Administrators of
multi-user systems are strongly advised to take action to disable
Hyper-Threading immediately."
More info here:
http://www.daemonology.net/hyperthreading-considered-harmful/
--
The only thing necessary for the triumph of evil
is for good men to do nothing.
- Edmund Burke
Więcej informacji o liście dyskusyjnej pld-devel-pl