First published: Mon Feb 27 2017(Updated: )
Page table walks conducted by the MMU during virtual to physical address translation leave a trace in the last level cache of modern ARM processors. By performing a side-channel attack on the MMU operations, it is possible to leak data and code pointers from JavaScript, breaking ASLR.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Allwinner A64 | ||
Amd Athlon Ii 640 X4 | ||
Amd E-350 | ||
Amd Fx-8120 8-core | ||
Amd Fx-8320 8-core | ||
Amd Fx-8350 8-core | ||
Amd Phenom 9550 4-core | ||
Intel Atom C2750 | ||
Intel Celeron N2840 | ||
Intel Core I5 M480 | ||
Intel Core I7-2620qm | ||
Intel Core I7-3632qm | ||
Intel Core I7-4500u | ||
Intel Core I7-6700k | ||
Intel Core I7 920 | ||
Intel Xeon E3-1240 V5 | ||
Intel Xeon E5-2658 V2 | ||
Nvidia Tegra K1 Cd570m-a1 | ||
Nvidia Tegra K1 Cd580m-a1 | ||
Samsung Exynos 5800 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.