oss-sec mailing list archives

Re: Linux x86_64 NMI security issues

From: Andy Lutomirski <luto () amacapital net>
Date: Fri, 24 Jul 2015 23:12:48 -0700

On 07/24/2015 07:16 AM, Josh Boyer wrote:

On Wed, Jul 22, 2015 at 2:12 PM, Andy Lutomirski <luto () amacapital net> wrote:

Note: Several of these fixes each depend on a few patches immediately
before them.  The NMI stack switching fix also depends on changes made
in 4.2 and will appear to apply but crash on older kernels.  I have a
different variant that's more portable.


Given that none of these are going to apply cleanly on older kernels,
do you have backports available for 4.1.y and the longterm stable
kernels?


There's this:

https://git.kernel.org/cgit/linux/kernel/git/luto/linux.git/commit/?h=x86/nmi-backport

which is a combined effort of me and Ben Hutchings.  It's not synced up
to the fixes in Linus' tree.

Note that even Linus' tree doesn't have the synchronous modify_ldt fix
yet.  I sent a hopefully final version of that out a few minutes ago.

--Andy

Current thread:

Linux x86_64 NMI security issues Andy Lutomirski (Jul 22)
- Re: Linux x86_64 NMI security issues Solar Designer (Jul 22)
  - Re: Linux x86_64 NMI security issues Kurt Seifried (Jul 22)
- Re: Linux x86_64 NMI security issues Petr Matousek (Jul 23)
  - Re: Linux x86_64 NMI security issues Andy Lutomirski (Jul 23)
    - Re: Linux x86_64 NMI security issues Petr Matousek (Jul 23)
- Re: Linux x86_64 NMI security issues Josh Boyer (Jul 24)
  - Re: Linux x86_64 NMI security issues Andy Lutomirski (Jul 24)
    - Re: Re: Linux x86_64 NMI security issues Luis Henriques (Jul 28)
    - Re: Re: Linux x86_64 NMI security issues Thomas D. (Aug 10)
- Re: Linux x86_64 NMI security issues Solar Designer (Jul 29)
  - Re: Linux x86_64 NMI security issues Daniel Micay (Jul 29)
- Re: Linux x86_64 NMI security issues Jason A. Donenfeld (Aug 04)
- CVE-2015-3290: Linux privilege escalation due to nested NMIs interrupting espfix64 Andy Lutomirski (Aug 04)