From owner-freebsd-hackers@FreeBSD.ORG  Fri Jul 13 12:44:20 2012
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id F2D57106566C
	for <freebsd-hackers@freebsd.org>; Fri, 13 Jul 2012 12:44:19 +0000 (UTC)
	(envelope-from jhb@freebsd.org)
Received: from bigwig.baldwin.cx (bigknife-pt.tunnel.tserv9.chi1.ipv6.he.net
	[IPv6:2001:470:1f10:75::2])
	by mx1.freebsd.org (Postfix) with ESMTP id C87718FC16
	for <freebsd-hackers@freebsd.org>; Fri, 13 Jul 2012 12:44:19 +0000 (UTC)
Received: from jhbbsd.localnet (unknown [209.249.190.124])
	by bigwig.baldwin.cx (Postfix) with ESMTPSA id 3D935B944;
	Fri, 13 Jul 2012 08:44:19 -0400 (EDT)
From: John Baldwin <jhb@freebsd.org>
To: freebsd-hackers@freebsd.org
Date: Fri, 13 Jul 2012 08:31:59 -0400
User-Agent: KMail/1.13.5 (FreeBSD/8.2-CBSD-20110714-p17; KDE/4.5.5; amd64; ; )
References: <CAOmNS514kLwq=MpGbwL324MQGQYrCAgM9ByaocRujjG1M55+Tg@mail.gmail.com>
In-Reply-To: <CAOmNS514kLwq=MpGbwL324MQGQYrCAgM9ByaocRujjG1M55+Tg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: Text/Plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <201207130831.59211.jhb@freebsd.org>
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.7
	(bigwig.baldwin.cx); Fri, 13 Jul 2012 08:44:19 -0400 (EDT)
Cc: Bill Crisp <bcrisp@crispernetworks.com>
Subject: Re: CVE-2012-0217 Intel's sysret Kernel Privilege Escalation and
	FreeBSD 6.2/6.3
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Jul 2012 12:44:20 -0000

On Thursday, July 12, 2012 12:36:07 pm Bill Crisp wrote:
> Good Morning!
> 
> This was also posted to the FreeBSD forums:
> 
> I have been researching CVE-2012-0217 and while I have patched the kernels
> on servers with 7.3/8.2 that I have, I would like to see if anyone knows
> for sure if 6.2/6.3 are also vulnerable? I am aware that those kernels are
> out of support from looking at the documentation. I have looked at the code
> in trap.c to see if the current patch would work with 6.3 source but it
> won't based on what I saw. I am also aware of upgrading as an option to
> resolve this unfortunately in some cases I have this is not possible right
> now.
> 
> Any help would be greatly appreciated, and I can of course test anything
> that might need it.

Every FreeBSD/amd64 kernel in existent is vulnerable.  In truth, my personal 
opinion is that Intel screwed up their implementation of that instruction 
whereas AMD got it right, and we are merely working around Intel's CPU bug. :(

-- 
John Baldwin