[Info-vax] CVE-2018-8897 Privilege Escalation due to widespread misunderstanding of x86-64 privileged instruction semantics
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Sat May 19 13:48:43 EDT 2018
On 2018-05-10 15:27:23 +0000, Bob Gezelter said:
> Apparently, a large number kernel-level developers have misunderstood
> the documentation concerning the interruptability of an x86-64
> privileged instruction.
Link to a whitepaper with a discussion of the vulnerability...
https://www.triplefault.io/2018/05/spurious-db-exceptions-with-pop-ss.html
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list