From owner-freebsd-security@freebsd.org  Wed May 15 10:59:01 2019
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id A3BF7158D3A7
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Wed, 15 May 2019 10:59:01 +0000 (UTC)
 (envelope-from roam@ringlet.net)
Received: from nimbus.fccf.net (nimbus.fccf.net [185.117.82.79])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 3884E865E3
 for <freebsd-security@freebsd.org>; Wed, 15 May 2019 10:59:00 +0000 (UTC)
 (envelope-from roam@ringlet.net)
Received: from straylight.m.ringlet.net (unknown [93.152.146.108])
 by nimbus.fccf.net (Postfix) with ESMTPSA id 231553EA
 for <freebsd-security@freebsd.org>; Wed, 15 May 2019 13:53:08 +0300 (EEST)
Received: from roam (uid 1000) (envelope-from roam@ringlet.net) id 621a36
 by straylight.m.ringlet.net (DragonFly Mail Agent v0.11);
 Wed, 15 May 2019 13:53:05 +0300
Date: Wed, 15 May 2019 13:53:05 +0300
From: Peter Pentchev <roam@ringlet.net>
To: grarpamp <grarpamp@gmail.com>
Cc: freebsd-security@freebsd.org, freebsd-questions@freebsd.org
Subject: Re: ZombieLoad Attack: Intel Exploits You... Again!
Message-ID: <20190515105305.GL18665@straylight.m.ringlet.net>
Mail-Followup-To: grarpamp <grarpamp@gmail.com>,
 freebsd-security@freebsd.org, freebsd-questions@freebsd.org
References: <CAD2Ti295ixR4eOP4PbtcS6MWU_=8-T_WqNNATK7kar-Q7Rzn8g@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha512;
 protocol="application/pgp-signature"; boundary="1X+6QtwRodzgDPAC"
Content-Disposition: inline
In-Reply-To: <CAD2Ti295ixR4eOP4PbtcS6MWU_=8-T_WqNNATK7kar-Q7Rzn8g@mail.gmail.com>
User-Agent: Mutt/1.10.1 (2018-07-13)
X-Rspamd-Queue-Id: 3884E865E3
X-Spamd-Bar: ++
Authentication-Results: mx1.freebsd.org;
 spf=pass (mx1.freebsd.org: domain of roam@ringlet.net designates 185.117.82.79
 as permitted sender) smtp.mailfrom=roam@ringlet.net
X-Spamd-Result: default: False [2.49 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[];
 TO_DN_SOME(0.00)[]; R_SPF_ALLOW(0.00)[+mx];
 URIBL_RED(3.50)[zombieloadattack.com.multi.uribl.com];
 SEM_URIBL_FRESH15(3.00)[zombieloadattack.com.fresh15.spameatingmonkey.net];
 RCVD_COUNT_THREE(0.00)[3];
 MX_GOOD(-0.01)[cached: nimbus.fccf.net];
 HAS_ANON_DOMAIN(0.10)[]; NEURAL_HAM_SHORT(-0.16)[-0.162,0];
 SUBJECT_ENDS_EXCLAIM(0.00)[]; SIGNED_PGP(-2.00)[];
 FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[];
 R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+];
 ASN(0.00)[asn:200533, ipnet:185.117.82.0/24, country:BG];
 IP_SCORE(0.01)[country: BG(0.05)]; ARC_NA(0.00)[];
 NEURAL_HAM_MEDIUM(-0.96)[-0.960,0]; FROM_HAS_DN(0.00)[];
 RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-0.89)[-0.890,0];
 MIME_GOOD(-0.20)[multipart/signed,text/plain];
 PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org];
 DMARC_NA(0.00)[ringlet.net]; BAD_REP_POLICIES(0.10)[];
 TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_TLS_ALL(0.00)[];
 GREYLIST(0.00)[pass,body]
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 15 May 2019 10:59:01 -0000


--1X+6QtwRodzgDPAC
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, May 15, 2019 at 03:24:54AM -0400, grarpamp wrote:
> https://zombieloadattack.com/
> https://zombieloadattack.com/zombieload.pdf
> https://www.cyberus-technology.de/posts/2019-05-14-zombieload.html
> https://github.com/IAIK/ZombieLoad
> https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2018-12130
> https://www.youtube.com/watch?v=3DwQvgyChrk_g
>=20
> FreeBSD people...
> See linux patches in and update your microcode, ports, etc.

So... https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc =
then?

G'luck,
Peter

--=20
Peter Pentchev  roam@{ringlet.net,debian.org,FreeBSD.org} pp@storpool.com
PGP key:        http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint 2EE7 A7A5 17FC 124C F115  C354 651E EFB0 2527 DF13

--1X+6QtwRodzgDPAC
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=jf60
-----END PGP SIGNATURE-----

--1X+6QtwRodzgDPAC--