Sujet : Re: Uh Oh - NEW Data Leak Found in Intel Processors
De : invalid (at) *nospam* invalid.invalid (Richard Kettlewell)
Groupes : comp.os.linux.miscDate : 22. May 2025, 21:16:25
Autres entêtes
Organisation : terraraq NNTP server
Message-ID : <wwvbjrkbduu.fsf@LkoBDZeT.terraraq.uk>
References : 1 2
User-Agent : Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux)
Marc Haber <mh+
usenetspam1118@zugschl.us> writes:
c186282 <c186282@nnada.net> wrote:
https://scitechdaily.com/intels-memory-leak-nightmare-5000-bytes-per-second-in-the-hands-of-hackers/
The flaw allows attackers to break down barriers between
users sharing the same processor, potentially accessing
private data stored in memory.
>
This is only really relevant for the cloud providers, where multiple
tenants run code concurrently on the same CPU. It is totally
irrelevant for home users, and only partially relevant for on-prem
virtualizsation ("private cloud").
I don’t think that’s correct. The BPRC attack breaches user/kernel,
guest/host and application-internal boundaries (i.e. it undermines
IBPB). Much wider impact than cloud service providers.
https://comsec.ethz.ch/wp-content/files/bprc_sec25.pdfis the full paper.
-- https://www.greenend.org.uk/rjk/
Re: Uh Oh - NEW Data Leak Found in Intel Processors
Re: Uh Oh - NEW Data Leak Found in Intel Processors