From owner-freebsd-security Mon Nov 10 12:37:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id MAA26608 for security-outgoing; Mon, 10 Nov 1997 12:37:56 -0800 (PST) (envelope-from owner-freebsd-security) Received: from Rigel.orionsys.com (root@rigel.orionsys.com [205.148.224.9]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id MAA26599 for ; Mon, 10 Nov 1997 12:37:51 -0800 (PST) (envelope-from root@Rigel.orionsys.com) Received: from localhost (root@localhost) by Rigel.orionsys.com (8.8.7/8.8.7) with ESMTP id MAA12245; Mon, 10 Nov 1997 12:37:02 -0800 (PST) Date: Mon, 10 Nov 1997 12:37:01 -0800 (PST) From: Dave Babler To: "Alejandro Vázquez C." cc: freebsd-security@FreeBSD.ORG Subject: Re: FW: [linux-security] pentium bug makes security under linux impo In-Reply-To: <34675C10.B7CFA5F2@sui.gda.itesm.mx> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Content-Transfer-Encoding: 8BIT Sender: owner-freebsd-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 10 Nov 1997, Alejandro Vázquez C. wrote: > > > Graphic Rezidew wrote: > > > > There is a SERIOUS bug in all pentium CPUs. The following > > > code will crash any machine running on a pentium CPU, MMX or no > > > MMX, any speed, regardless of OS (crash as in instant seize, hard > > > reboot the only cure): > > > > > > char x [5] = { 0xf0, 0x0f, 0xc7, 0xc8 }; > > > > > > main () > > > { > > > void (*f)() = x; > > > f(); > > > } > > > > > > This require no special permissions to run, it works fine with > > > average-joe-userspace permissions. I have verified this, it works. > > > Demand a new CPU from Intel. > > If I had someone, I would. But I have an AMD K5 and detects perfectly the illegal > instruction. It seems that it only happens with Intel's Pentium (I have NOT tested > with AMD K6, neigther Cyrix's Pentium class CPUs). > If it *did* crash non-Intel parts, Intel would probably have cause to sue since it is a mask error, apparently. Take a peek at http://www.x86.org for more on the "F00F bug".