|
Post by pharrisire on Jun 18, 2012 13:02:57 GMT -5
|
|
|
Post by Kevin McAleavey on Jun 20, 2012 3:11:36 GMT -5
Precisely the reason for the holdup on the release of KNOS 9 ... *YES*, we were vulnerable to it and were made aware of it back at the end of May when we were originally planning to release. Intel poorly designed their chips and failed to comply with the AMD64 standard. BSD was among the first to fix it, and we've already rewritten the code for retval on 64 bit. 32 bit is not affected at all, nor are AMD chips. This is strictly an Intel flaw in their hardware and they have no intentions of FIXING it. Details here: lists.freebsd.org/pipermail/freebsd-announce/2012-June/001425.htmlAs a result of that flaw, we've been re-auditing our other kernel sources to ensure that there are no other similar potential security holes. The actual flaw is not exploitable remotely, but it's still a flaw and we don't like those one bit.
|
|