Tag Archives: linux

Is a retpoline-enabled kernel ‘enough’ to fully protect against Spectre Variant 2?

The Spectre attack exposed processors to memory disclosure attacks. Manipulation of indirect kernel calls may allow side channel retrieval of memory content (Branch Target Injection). The Linux kernel was subsequently enhanced to mitigate this Variant II attack using the retpoline … Continue reading

Posted in Uncategorised | Tagged , , , , | Comments Off on Is a retpoline-enabled kernel ‘enough’ to fully protect against Spectre Variant 2?

Linux Kernel 4.14/4.15 and AMD’s SEV memory module

In my previous post I made brief mention of some new features in the 4.15 (well, technically, 4.14) Linux kernel, supporting encrypted volatile memory (RAM). Apart from a brief awareness of industry initiatives in this area, I hadn’t closely followed … Continue reading

Posted in Uncategorised | Tagged , , , , , , , , | Comments Off on Linux Kernel 4.14/4.15 and AMD’s SEV memory module

CVE-2018-5390 Linux Kernel TCP implementation vulnerable to Denial of Service

News of a new vulnerability in the Linux kernel is worth reviewing (https://www.kb.cert.org/vuls/id/962459). The vulnerability affects kernels 4.9 and later, and can apparently be exploited by a remote attacker interacting with an open port. Patches are available.

Posted in Uncategorised | Tagged , , , , , | Comments Off on CVE-2018-5390 Linux Kernel TCP implementation vulnerable to Denial of Service