Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CAGXu5jLQQfuinhxu8RPFgCRNzGoby261RtQJE6zK5fvqbPX0jA@mail.gmail.com>
Date: Tue, 19 Jan 2016 09:23:32 -0800
From: Kees Cook <keescook@...omium.org>
To: Casey Schaufler <casey.schaufler@...el.com>
Cc: "kernel-hardening@...ts.openwall.com" <kernel-hardening@...ts.openwall.com>
Subject: Re: For whoever's looking at memory santizing..

On Thu, Jan 14, 2016 at 4:36 PM, Hanno Böck <hanno@...eck.de> wrote:
> On Thu, 14 Jan 2016 18:11:09 -0500
> Valdis Kletnieks <Valdis.Kletnieks@...edu> wrote:
>
>> If you need a real-life example of why we should be doing it
>> consistently:
>>
>> http://venturebeat.com/2016/01/13/nvidia-blames-apple-for-bug-that-exposes-porn-browsing-in-chromes-incognito-mode/
>
> This article seems to be only about OS X.
>
> I hope it's no secret that this is a problem on Linux as well:
> https://hsmr.cc/palinopsia/
>
> And from all I'm aware it's unfixed.

I'm curious if this is fixable from the DRM layer, or if it's strictly
driver-specific. Casey, could you bounce this toward some of the Intel
graphics folks? While Intel isn't called out, I'm curious if there is
still something that could be done in the general case...

-Kees

-- 
Kees Cook
Chrome OS & Brillo Security

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.