Some 64-bit operating systems and virtualization software running on Intel CPU hardware are vulnerable to a local privilege escalation attack. The vulnerability may be exploited for local privilege escalation or a guest-to-host virtual machine escape.
Intel claims that this vulnerability is a software implementation issue, as their processors are functioning as per their documented specifications. However, software that fails to take the Intel-specific SYSRET behavior into account may be vulnerable.
منبع و اطلاعات بیشتر ! (http://www.kb.cert.org/vuls/id/649219)
websazha
June 28th, 2012, 01:20
میشه یکی از اساتید این رو برسی کند و یک توضیح اجمالی بده تشکر
astro.alireza
June 28th, 2012, 01:37
Overview
Some 64-bit operating systems and virtualization software running on Intel CPU hardware are vulnerable to a local privilege escalation attack. The vulnerability may be exploited for local privilege escalation or a guest-to-host virtual machine escape.
Intel claims that this vulnerability is a software implementation issue, as their processors are functioning as per their documented specifications. However, software that fails to take the Intel-specific SYSRET behavior into account may be vulnerable.
منبع و اطلاعات بیشتر ! (http://www.kb.cert.org/vuls/id/649219)
بابت اطلاع رسانی ممنون!
اما اونجوری که گفته vmware esxi از این مشکل تاثیر پذیری نداره و کاربران xen و محصولات مایکروسافت مشکل دارند که باید بر اساس دستورالعمل شرکت سازنده نرم افزار اقدام کنند
smartieuser
July 9th, 2012, 14:16
Dear User,
During the night of 30.06.2012 to 01.07.2012 our internal
monitoring systems registered an increase in the level of
IT power usage by approximately one megawatt.
The reason for this huge surge is the additional switched
leap second which can lead to permanent CPU load on Linux
servers.
According to heise.de, various Linux distributions are
affected by this. Further information can be found at:
Leap second: Linux can freeze - The H Open: News and Features (http://www.h-online.com/open/news/item/Leap-second-Linux-can-freeze-1629805.html)
In order to reduce CPU load to a normal level again, a
restart of the whole system is necessary in many cases.
First, a soft reboot via the command line should be
attempted. Failing that, you have the option of performing
a hardware reset via the Robot administration interface.
For this, select menu item "Server" and the "Reset" tab
for the respective server in the administration interface.
Please do not hesitate to contact us, should you have any
queries.