Re: Meltdown-US / Meltdown 3a Remaining Leakage
Open Source Security
Posted by Solar Designer on Oct 06
Hello Daniel et al.,
Thank you very much for your research and for posting about it in here!
I assume you’re talking specifically about Linux’s KPTI. Let’s be
naming Linux explicitly, as this list isn’t only about Linux.
In Linux, /proc/interrupts is generally world-readable. So perhaps
that’s something to fix first, since yes it’s known to allow for
keystroke timing attacks. Should be fixed in the kernel…