diff options
| author | Andy Lutomirski <[email protected]> | 2017-08-01 07:11:34 -0700 |
|---|---|---|
| committer | Ingo Molnar <[email protected]> | 2017-08-10 17:15:13 +0200 |
| commit | 767d035d838f4fd6b5a5bbd7a3f6d293b7f65a49 (patch) | |
| tree | 04a5a48615adfd05d7a7be426f8367aa3c67700a /tools/perf/scripts/python/export-to-postgresql.py | |
| parent | af79ded44b7c5eee46b433a9269fcf899372225b (diff) | |
x86/fsgsbase/64: Fully initialize FS and GS state in start_thread_common
execve used to leak FSBASE and GSBASE on AMD CPUs. Fix it.
The security impact of this bug is small but not quite zero -- it
could weaken ASLR when a privileged task execs a less privileged
program, but only if program changed bitness across the exec, or the
child binary was highly unusual or actively malicious. A child
program that was compromised after the exec would not have access to
the leaked base.
Signed-off-by: Andy Lutomirski <[email protected]>
Cc: Borislav Petkov <[email protected]>
Cc: Borislav Petkov <[email protected]>
Cc: Brian Gerst <[email protected]>
Cc: Chang Seok <[email protected]>
Cc: Denys Vlasenko <[email protected]>
Cc: H. Peter Anvin <[email protected]>
Cc: Josh Poimboeuf <[email protected]>
Cc: Linus Torvalds <[email protected]>
Cc: Peter Zijlstra <[email protected]>
Cc: Thomas Gleixner <[email protected]>
Cc: [email protected]
Signed-off-by: Ingo Molnar <[email protected]>
Diffstat (limited to 'tools/perf/scripts/python/export-to-postgresql.py')
0 files changed, 0 insertions, 0 deletions