Ubuntu
linux package

  1. Bug #2032933
  2. Comment #13

Comment 13 for bug 2032933

Revision history for this message
Seth Arnold (seth-arnold) wrote :

> +ksmd

I'm concerned about this change. Historically, the page-merging code has allowed cross-VM snooping, including even recovery of GnuPG private keys: https://eprint.iacr.org/2013/448.pdf

Unless something has changed to mitigate the cross-domain privacy leaks in ksmd, it ought to be opt-in for administrators to select if all their VMs are in the same security domain.

Thanks