blob: 1a9bbfb890fe36df8ef061d036b03cd03c54dae3 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
Description:
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9870
http://source.android.com/security/bulletin/2016-08-01.html
https://source.codeaurora.org/quic/la/kernel/msm/commit/?id=4f57652fcd2dce7741f1ac6dc0417e2f265cd1de
Notes:
bwh> I can't see how this is a security issue. There was an earlier issue
bwh> that TPIDRURW leaked between tasks, but that was fixed by commit
bwh> 6a1c53124aa1 "ARM: 7403/1: tls: remove covert channel via TPIDRURW"
bwh> in 3.4-rc1 and 3.2.17. Possibly the security impact is specific to
bwh> the way Qualcomm was (ab)using TPIDRURW?
Bugs:
upstream: released (3.11-rc1) [a4780adeefd042482f624f5e0d577bf9cdcbb760]
3.16-upstream-stable: N/A
3.2-upstream-stable: ignored "appears to be specific to Qualcomm Android"
sid: released (3.11.5-1)
3.16-jessie-security: N/A
3.2-wheezy-security: ignored "appears to be specific to Qualcomm Android"
|