Sicherheit: Zwei Probleme in spectre-meltdown-checker

Lesezeichen hinzufügen

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2019-eb176fa2cb
2019-12-21 02:06:19.408522
-------------------------------------------------------------------------------
-

Name : spectre-meltdown-checker
Product : Fedora 30
Version : 0.43
Release : 1.fc30
URL : https://github.com/speed47/spectre-meltdown-checker
Summary : Spectre & Meltdown vulnerability/mitigation checker for Linux
Description :
Spectre & Meltdown vulnerability/mitigation checker for Linux.

-------------------------------------------------------------------------------
-
Update Information:

Update to 0.43. Changes: * feat: implement TAA detection (CVE-2019-11135) *
feat: implement MCEPSC / iTLB Multihit detection (CVE-2018-12207) * feat: taa:
add TSX_CTRL MSR detection in hardware info * feat: fwdb: use both Intel GitHub
repo and MCEdb to build our firmware version database * feat: use `--live` with
`--kernel`/`--config`/`--map` to override file detection in live mode * enh:
rework the vuln logic of MDS with `--paranoid` (fixes
[#307](https://github.com/speed47/spectre-meltdown-checker/issues/307)) * enh:
explain that Enhanced IBRS is better for performance than classic IBRS * enh:
kernel: autodetect customized arch kernels from cmdline * enh: kernel
decompression: better tolerance against missing tools * enh: mock: implement
reading from `/proc/cmdline` * fix: variant3a: Silvermont CPUs are not
vulnerable to variant 3a * fix: lockdown: detect Red Hat locked down kernels
(impacts MSR writes) * fix: lockdown: detect locked down mode in vanilla 5.4+
kernels * fix: sgx: on locked down kernels, fallback to CPUID bit for detection
* fix: fwdb: builtin version takes precedence if the local cached version is
older * fix: pteinv: don't check kernel image if not available * fix:
silence
useless error from grep (fixes [#322](https://github.com/speed47/spectre-
meltdown-checker/issues/322)) * fix: msr: fix msr module detection under Ubuntu
19.10 (fixes [#316](https://github.com/speed47/spectre-meltdown-
checker/issues/316)) * fix: mocking value for read_msr * chore: rename mcedb
cmdline parameters to fwdb, and change db version scheme * chore: fwdb: update
to v130.20191104+i20191027
-------------------------------------------------------------------------------
-
ChangeLog:

* Wed Dec 11 2019 Reto Gantenbein <reto.gantenbein@linuxmonk.ch> - 0.43-1
- Update to 0.43
* Fri Jul 26 2019 Fedora Release Engineering <releng@fedoraproject.org> -
0.42-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Thu May 30 2019 Reto Gantenbein <reto.gantenbein@linuxmonk.ch> - 0.42-1
- Update to 0.42
* Wed May 15 2019 Reto Gantenbein <reto.gantenbein@linuxmonk.ch> - 0.41-1
- Update to 0.41
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-eb176fa2cb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org