Question about Spectre vulnerability mitigation

Discussion on reverse-engineering and debugging.

Question about Spectre vulnerability mitigation

Postby rkhunter » Fri Jan 12, 2018 6:58 pm

Guys, I have little question about Spectre#1 mitigation in Win10 kernel.

For what Win10 kernel trap handlers were updated with LFENCE instructions? As I understand Spectre#1 can't allow Ring 3 code to read kernel memory or to be executed as Ring 0. Or I'm wrong?
User avatar
rkhunter
 
Posts: 1150
Joined: Mon Mar 15, 2010 12:51 pm
Location: Russian Federation
Reputation point: 147

Return to Reverse Engineering and Debugging

Who is online

Users browsing this forum: No registered users and 5 guests