http://googleprojectzero.blogspot.co.uk/2015/03/exploiting-dram-rowhammer-bug-to-gain.html
Builds on the CMU work from bit-flipping to target page-tables to gain kernel privs. While not directly-LangSec oriented, shows how composition of multiple layers can lead to cross-boundary attacks, similar to Travis's PiP work. Very cool, Jacob
_______________________________________________ langsec-discuss mailing list langsec-discuss@mail.langsec.org https://mail.langsec.org/cgi-bin/mailman/listinfo/langsec-discuss
