62 bookmarks. First posted by Psook january 2018.
Putting it all together, I would not be surprised if we start 2018 with the release of the mother of all hypervisor privilege escalation bugs, or something similarly systematic as to drive so much urgency, and the presence of so many interesting names on the patch set’s CC list.technology bullshit security container
january 2018 by soobrosa
there is presently an embargoed security bug impacting apparently all contemporary CPU architectures that implement virtual memory, requiring hardware changes to fully resolve. Urgent development of a software mitigation is being done in the open and recently landed in the Linux kernel, and a similar mitigation began appearing in NT kernels in November. In the worst case the software fix causes huge slowdowns in typical workloads. There are hints the attack impacts common virtualization environments including Amazon EC2 and Google Compute Engine, and additional hints the exact attack may involve a new variant of Rowhammer.linux kernel security
january 2018 by Hwinkler
tags2018 aws badtech bookmarks_bar bsdnow bullshit cis3360 cis4615 cloud computer_security container cpu cybersecurity defects embargo hardware hypervisors ifttt infosec instapaper intel kernel knowledge kpti linux linux_tips lpti meltdown meltdown_and_spectre meltdown_spectre memory microsoft notes nt p page page_table pocket python read refind rowhammer s security spectre speculation systems table technology techsnap unread via:popular virtualization vm vulnerability windows