"Our TLBleed exploit successfully leaks a 256-bit EdDSA key from libgcrypt (used in e.g. GPG) with a
98% success rate after just a single observation of signing operation on a co-resident hyperthread and just 17 seconds of analysis time."
We can show strength without hatred, justice without revenge, and compassion without weakness.
#docker misconfiguration leads to exploitation:
Colin Percival tweeted a short thread on the “Lazy FPU” vulnerability that was just disclosed (CVE-2018-3665).
Colin credits his learning about it to Theo de Raadt. Took him ~5 hours to come up with working exploit code.
More info on seclists.org and discussion on lobste.rs.
#OpenBSD intuition regarding a new side-channel caused by the speculative execution on systems with lazy FPU context switching wasn't unsubstantiated. Intel has just published an avdisory: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00145.html
The BOF SWAP is complete.
DMS 1140: BUG BOF
DMS 1160: THEO BOF
#NetBSD merges a new version of the CDDL dtrace and ZFS code.