[Git][security-tracker-team/security-tracker][master] Consider CVE-2018-3665 fixed once the default is enabled on all CPUs
Salvatore Bonaccorso
carnil at debian.org
Wed Jun 13 22:27:30 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eeda791a by Salvatore Bonaccorso at 2018-06-13T23:26:52+02:00
Consider CVE-2018-3665 fixed once the default is enabled on all CPUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -23141,10 +23141,11 @@ CVE-2018-3666
RESERVED
CVE-2018-3665 [speculative register leakage from lazy FPU context switching]
RESERVED
- - linux 4.11.6-1
+ - linux 4.6.1-1
- xen <unfixed>
NOTE: https://xenbits.xen.org/xsa/advisory-267.html
NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00145.html
+ NOTE: Default eagerfpu=on on all CPUs: https://git.kernel.org/linus/58122bf1d856a4ea9581d62a07c557d997d46a19
NOTE: Hard-disable lazy FPU mode: https://git.kernel.org/linus/ca6938a1cd8a1c5e861a99b67f84ac166fc2b9e7
CVE-2018-3664
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eeda791aa8f096a6bcd3a79e1cc9baa8175e9112
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eeda791aa8f096a6bcd3a79e1cc9baa8175e9112
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180613/24c5b22a/attachment.html>
More information about the debian-security-tracker-commits
mailing list