As I understand from dasunsrule32's post, affected CPUs show a flag X86_BUG_CPU_INSECURE (?!). Does this mean that Intel is distributing CPUs marking them as defective?! ...or is this flag from kernel detection?
+ Is somebody listing fixed CPU models? Note: I suppose neither OpenVZ 6 nor LXC are affected by this hardware bug. El 03/01/18 a les 02:02, Benjamin Henrion ha escrit: > Hi, > > Just reading this: > > https://amp.reddit.com/r/sysadmin/comments/7nl8r0/intel_bug_incoming/ > > Xen seems to have a pending patch to be release this week, but people > are speculating now that you could bypass the entire isolation process > provided by any hypervisor. > > Wait and see how this will be exploited, but you can be sure there > will be exploits soon in the wild. > > The patch for software mitigation seems to be big and performance impacting. > > But that would probably mean that containers can be bypassed. > > Wait and see, > > -- > Benjamin Henrion (zoobab) > Email: zoobab at gmail.com > Mobile: +32-484-566109 > Web: http://www.zoobab.com > FFII.org Brussels > "In July 2005, after several failed attempts to legalise software > patents in Europe, the patent establishment changed its strategy. > Instead of explicitly seeking to sanction the patentability of > software, they are now seeking to create a central European patent > court, which would establish and enforce patentability rules in their > favor, without any possibility of correction by competing courts or > democratically elected legislators." > _______________________________________________ > Users mailing list > Users@openvz.org > https://lists.openvz.org/mailman/listinfo/users > _______________________________________________ Users mailing list Users@openvz.org https://lists.openvz.org/mailman/listinfo/users
