Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Tue, 11 Aug 2015 21:35:26 -0400
From: sophia <>
Subject: CVE request - Processor side channels using out of order execution


I would like to request a CVE for a processor side channels using out of order execution. 

Past discussion of this includes: <>

Details of attack: <>

Conferences presented at:
RECON Montreal 2015 - <>
Blackhat 2015 - <>

Previously requested: no
Type: Side Channel Vulnerability

Affected versions: up till current processor architecture 

Brief Description: 
Simultaneous multi-threading on current processors allows for one process to exploit out-of-order execution optimizations to leak information from co-executed processes. Conversely, this same setup allows for one process to force an increase or a decrease in out-of-order-execution optimizations in the other process, thereby effecting its computed values and control flow.

- Sophia D'Antoine
Content of type "text/html" skipped

Download attachment "smime.p7s" of type "application/pkcs7-signature" (3833 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ