Re: Intel microcode fixes [OFF-TOPIC]

H. Peter Anvin (hpa@transmeta.com)
20 Nov 1998 19:35:39 GMT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: kuznet@ms2.inr.ac.ru: "Re: write() returning EAGAIN"
Previous message: Dr. Werner Fink: "Re: Linux-2.1.129.."

Followup to: <Pine.LNX.4.05.9811192328200.6229-100000@tahallah.demon.co.uk>
By author: Alex Buell <alex.buell@tahallah.demon.co.uk>
In newsgroup: linux.dev.kernel
>
> > EGADS! Is there NO security on the processor microcode? Could this be
> > exploited to do evil narsty things?
>
> Yeah. #1 Exploit: Resurrect the F00F bug. #2 Exploit: Infamous Pentium
> floating point bug. The list is endless.
>

Actually, it is *believed* that the microcode upload contains some
kind of security checking, in that it will reject code that isn't
properly "blessed." If that is so is hard to say for certain.

-hpa

-- 
    PGP: 2047/2A960705 BA 03 D3 2C 14 A8 A8 BD  1E DF FE 69 EE 35 BD 74
    See http://www.zytor.com/~hpa/ for web page and full PGP public key
        I am Bahá'í -- ask me about it or see http://www.bahai.org/
   "To love another person is to see the face of God." -- Les Misérables

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: kuznet@ms2.inr.ac.ru: "Re: write() returning EAGAIN"
Previous message: Dr. Werner Fink: "Re: Linux-2.1.129.."