Date: Mon, 10 Nov 1997 02:10:09 -0600 (CST) From: Graphic Rezidew <rezidew@rezidew.net> To: roger@nwu.edu, freebsd-security@freebsd.org, Kadokev@ripco.com Subject: FW: [linux-security] pentium bug makes security under linux impo Message-ID: <XFMail.971110022053.rezidew@rezidew.net> Resent-Message-ID: <m0xUFcS-000ALXC@jacob.remcomp.fr>
next in thread | raw e-mail | index | archive | help
note: I have tested this for myself with netbsd (???) freebsd (2.2.2) BSDi (BSD/OS 3.0) dos (6.22) <hey, somebody has to use it> linux (as if a version means anything here) solaris x86 (2.6 and 2.5.1) (with gcc not /usr/ucb/bin/cc) The results are the same. (SEEE!!!!!!! linux *IS* good for SOMETHING.) -----FW: <m0xUFcS-000ALXC@jacob.remcomp.fr>----- Date: Sat, 8 Nov 1997 19:28:28 +0100 (MET) From: (Jacob Navia) <jacob@jacob.remcomp.fr> To: linux-security@redhat.com Subject: [linux-security] pentium bug makes security under linux impossible This morning I received this message from the list gnu-win32@cygnus.com: The sender was anonymous > > There is a SERIOUS bug in all pentium CPUs. The following > code will crash any machine running on a pentium CPU, MMX or no > MMX, any speed, regardless of OS (crash as in instant seize, hard > reboot the only cure): > > char x [5] = { 0xf0, 0x0f, 0xc7, 0xc8 }; > > main () > { > void (*f)() = x; > f(); > } > > This require no special permissions to run, it works fine with > average-joe-userspace permissions. I have verified this, it works. > Demand a new CPU from Intel. > Curious, I compiled that under Linux OS. Linux freezed. Dead. Without *any* warning. My machine is a Genuine Intel 166 MHZ Pentium MMX. Then I rebooted Windows NT. Compiled it with my compiler system (lcc-win32). Windows NT freezed. DEAD. Without *any* warning. Then, I ported the code to my old faithful 486-DX33 with linux. Compiled it. When it run it traps with 'illegal instruction' This means that anybody can crash anytime any OS that runs under a Pentium CPU. As the poster said, no special permissions are needed, the pentium runs under ring 3 permissions!!!! This means that no secure system can ever be built that uses the pentium CPU. No protected system. The OS receives NO TRAP!!! This is absolutely incredible. Bugs are impossible to avoid. Not even with huge corporations like Intel. I will *not* start screaming at Intel now. Myself, I have done more bugs than Intel ever will. As somene said before: Those that are free of sin, throw the first stone... For any user of pentium cpus in a multiuser system this means that anybody that can execute a program can freeze the system dead. I repeat: NO ROOT PERMISSIONS ARE NEEDED. -- Jacob Navia Logiciels/Informatique 41 rue Maurice Ravel Tel (1) 48.23.51.44 93430 Villetaneuse Fax (1) 48.23.95.39 France -- ---------------------------------------------------------------------- Please refere to the information about this list as well as general information about Linux security at http://www.aoy.com/Linux/Security. ---------------------------------------------------------------------- To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < /dev/null --------------End of forwarded message------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ The word "spine" is, of course, an anagram of "penis". This is true in almost fifty percent of the languages of the Galaxy, and many people have attempted to explain why. Usually these explanations get bogged down in silly puns about "standing erect" -- Douglas Adams, "The Hitchhiker's Guide to the Galaxy" ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Graphic Rezidew rezidew@rezidew.net http://Graphic.Rezidew.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.971110022053.rezidew>