DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 20th October 2016
gpatrick gpatrick is offline
Spam Deminer
 
Join Date: Nov 2009
Posts: 245
Default Researchers Bypass ASLR Protection on Intel Haswell CPUs

http://news.softpedia.com/news/resea...u-509460.shtml

How will this impact OpenBSD?
Reply With Quote
  #2   (View Single Post)  
Old 20th October 2016
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,975
Default

This was posted in the News subforum earlier today: http://daemonforums.org/showthread.php?t=10005

But, as your question is OpenBSD-specific, please note that a discussion thread has begun on the misc@ mailing list:

http://marc.info/?t=147695300800002&r=1&w=2

Peter Hansteen, author of The Book of PF, noted in his reply to that thread (highlight mine):
Quote:
The paper has no(!) references to OpenBSD, they never show any actual code, and it appears that this is a local exploit that seems to require that the victim and spy processes share the same virtual address space, meaning that ASLR isn't actually enabled.
Reply With Quote
  #3   (View Single Post)  
Old 1st November 2016
da1 da1 is offline
Fdisk Soldier
 
Join Date: Feb 2009
Location: Berlin, DE
Posts: 49
Default

wow, a mitigation technique that doesn't actually do it's job in ubuntu . amazon spyware much?
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Security Researchers Bypass ASLR Protection on Intel Haswell CPUs e1-531g News 2 15th February 2017 04:34 PM
USB3 issues on Haswell laptop sspiff OpenBSD General 1 28th November 2014 12:33 PM
X11 and Haswell Intel 4600 tavrion NetBSD Installation and Upgrading 16 7th July 2013 12:26 PM
Security Intel CPUs affected by VM privilege escalation exploit J65nko News 9 18th June 2012 11:51 PM
CAPTCHA schemes still easy to bypass J65nko News 8 7th November 2011 08:09 PM


All times are GMT. The time now is 10:19 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick