Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit

To: debian-italian <debian-italian@lists.debian.org>
Subject: Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit
From: Davide Prina <davide.prina@gmail.com>
Date: Wed, 3 Jan 2018 13:42:40 +0100
Message-id: <[🔎] 5841ffdc-0cce-89bf-15e6-55e4c0d697a8@gmail.com>
Reply-to: debian-italian <debian-italian@lists.debian.org>
In-reply-to: <6b3d9754ebe82451687f6c53d48deefc@ssl.ombos.raceme.org>
References: <6b3d9754ebe82451687f6c53d48deefc@ssl.ombos.raceme.org>

giro a tutti questa notizia (per chi non è iscritto alla lista securityo gli è sfuggita).

Sunto sintetico: è stato scoperto un bug "hardware" nei processori intel(prodotti almeno negli ultimi 10 anni) che permette ad un attaccante diaccedere ad aree di memoria protetta. Questo bug non può essere correttocon un aggiornamento del microcode intel. È stata creata una patchsoftware per Linux che isola la memoria e impedisce lo sfruttamento delbug. I processori AMD non sono affetti dal bug.

Punti negativi: la patch sarà applicata a Linux e sarà attiva per tuttii processori (compresi AMD). Le prestazioni del PC dopo l'applicazionedella patch potrebbero essere mediamente inferiori del 30% ("du -s" saràil 50% più lento) :-((((


Ciao
Davide

-------- Forwarded Message --------

Subject: Huge Intel CPU Bug Allegedly Causes Kernel Memory VulnerabilityWith Up To 30% Performance Hit

Resent-Date: Wed,  3 Jan 2018 10:53:08 +0000 (UTC)
Resent-From: debian-security@lists.debian.org
Date: Wed, 03 Jan 2018 11:43:40 +0100
From: Vincent Deffontaines <vincent@gryzor.com>
To: debian-security@lists.debian.org

Greetings,

And happy new year.

This is hitting all of us soon.

In short : a huge (and long lasting) hardware bug, present in about allIntel CPUs that have been sold for the last 10 years.It is not fixable by microcode, and requires ugly patching from thekernel layer. Other OSes such as Microsoft are concerned as well.


Nice overview of the thing :
https://hothardware.com/news/intel-cpu-bug-kernel-memory-isolation-linux-windows-macos

More detail :
http://pythonsweetness.tumblr.com/post/169166980422/the-mysterious-case-of-the-linux-page-table

Linus' patch :
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5aa90a84589282b87666f92b6c3c917c8080a9bf


Vincent Deffontaines



--
Dizionari: http://linguistico.sourceforge.net/wiki
Sistema operativo: http://www.debian.org
GNU/Linux User: 302090: http://counter.li.org
Non autorizzo la memorizzazione del mio indirizzo su outlook

Reply to:

Follow-Ups:
- Re: Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit
  - From: Paolo Redælli <paolo.redaelli@gmail.com>
- Re: Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit
  - From: Felipe Salvador <felipe.salvador@gmail.com>
- Re: Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit
  - From: Leonardo Boselli <leo@dicea.unifi.it>

Prev by Date: Re: Scheduler
Next by Date: Re: Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit
Previous by thread: Il pacchetto slsc (slang spreadsheet calculator) è stato riesumato! .. :-)
Next by thread: Re: Fwd: Huge Intel CPU Bug Allegedly Causes Kernel Memory Vulnerability With Up To 30% Performance Hit
Index(es):
- Date
- Thread