59 bookmarks. First posted by Psook 20 days ago.
Putting it all together, I would not be surprised if we start 2018 with the release of the mother of all hypervisor privilege escalation bugs, or something similarly systematic as to drive so much urgency, and the presence of so many interesting names on the patch set’s CC list.technology bullshit security container
16 days ago by soobrosa
there is presently an embargoed security bug impacting apparently all contemporary CPU architectures that implement virtual memory, requiring hardware changes to fully resolve. Urgent development of a software mitigation is being done in the open and recently landed in the Linux kernel, and a similar mitigation began appearing in NT kernels in November. In the worst case the software fix causes huge slowdowns in typical workloads. There are hints the attack impacts common virtualization environments including Amazon EC2 and Google Compute Engine, and additional hints the exact attack may involve a new variant of Rowhammer.linux kernel security
20 days ago by Hwinkler
tags2018 aws badtech bsdnow bullshit cis3360 cis4615 cloud container cpu cybersecurity defects embargo hardware ifttt infosec instapaper intel kernel kpti linux lpti meltdown meltdown_and_spectre meltdown_spectre memory notes nt page pocket python read refind rowhammer s security spectre speculation systems table technology techsnap unread via:popular virtualization vm vulnerability windows