Re: [PATCH 0/2] arm64: spectre-v1 write fixes (CVE-2018-3693)

From: Alan J. Wylie
Date: Tue Jul 10 2018 - 15:40:10 EST

Next message: Wolfram Sang: "Re: [PATCH v11 5/8] i2c: fsi: Add transfer implementation"
Previous message: Logan Gunthorpe: "Re: [PATCH v5 3/3] PCI: Introduce the disable_acs_redir parameter"
In reply to: Mark Rutland: "[PATCH 1/2] arm64: fix possible spectre-v1 write in ptrace_hbp_set_event()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mark Rutland <mark.rutland@xxxxxxx> writes:

> These patches inhibit spectre-v1-write gadgets found in arch/arm64, using the
> same mitigation applied to existing spectre-v1-read gadgets.
>
> This issue is also known as CVE-2018-3693, or "bounds check bypass store".
> More details can be found in the Arm Cache Speculation Side-channels
> whitepaper, available from the Arm security updates site [1].

> [1] https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability

>From that web page:

| Variant 1: bounds check bypass store (CVE-2017-5753) and bounds check
| bypass store (CVE-2018-3693)

Isn't -5753 a "read" vulnerability, not "store"?

--
Alan J. Wylie https://www.wylie.me.uk/

Dance like no-one's watching. / Encrypt like everyone is.
Security is inversely proportional to convenience

Next message: Wolfram Sang: "Re: [PATCH v11 5/8] i2c: fsi: Add transfer implementation"
Previous message: Logan Gunthorpe: "Re: [PATCH v5 3/3] PCI: Introduce the disable_acs_redir parameter"
In reply to: Mark Rutland: "[PATCH 1/2] arm64: fix possible spectre-v1 write in ptrace_hbp_set_event()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]