FreeBSD -- L1 Terminal Fault (L1TF) Kernel Information Disclosure

ID 2310B814-A652-11E8-805B-A4BADB2F4699
Type freebsd
Reporter FreeBSD
Modified 2018-08-14T00:00:00


Problem Description: On certain Intel 64-bit x86 systems there is a period of time during terminal fault handling where the CPU may use speculative execution to try to load data. The CPU may speculatively access the level 1 data cache (L1D). Data which would otherwise be protected may then be determined by using side channel methods. This issue affects bhyve on FreeBSD/amd64 systems. Impact: An attacker executing user code, or kernel code inside of a virtual machine, may be able to read secret data from the kernel or from another virtual machine.