On Sat, Sep 01, 2018 at 06:33:22PM -0400, Wes Turner wrote: > Speaking of pages and slowdowns, > is there a better place to ask this question: > From "'Turning Tables' shared page tables vuln": > """ > 'New "Turning Tables" Technique Bypasses All Windows Kernel Mitigations' > https://www.bleepingcomputer.com/news/security/new-turning-tables-technique-bypasses-all-windows-kernel-mitigations/ > > Furthermore, since the concept of page tables is also used by Apple and > the Linux project, macOS and Linux are, in theory, also vulnerable to this > technique, albeit the researchers have not verified such attacks, as of > yet. > Slides: > https://cdn2.hubspot.net/hubfs/487909/Turning%20(Page)%20Tables_Slides.pdf > Naturally, I took notice and decided to forward the latest scary headline > to this list to see if this is already being addressed? This essentially just says that if you can change page tables you can subvert kernels. That's always been the case, always will be, I'm sure has been used forever by root kits, and I don't know why anybody would pass it off as a "new attack". -Andi