drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in spectre-meltdown-checker
Name: |
Zwei Probleme in spectre-meltdown-checker |
|
ID: |
FEDORA-2019-eb176fa2cb |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 30 |
|
Datum: |
Sa, 21. Dezember 2019, 14:04 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135 |
|
Applikationen: |
spectre-meltdown-checker |
|
Originalnachricht |
------------------------------------------------------------------------------- - Fedora Update Notification FEDORA-2019-eb176fa2cb 2019-12-21 02:06:19.408522 ------------------------------------------------------------------------------- -
Name : spectre-meltdown-checker Product : Fedora 30 Version : 0.43 Release : 1.fc30 URL : https://github.com/speed47/spectre-meltdown-checker Summary : Spectre & Meltdown vulnerability/mitigation checker for Linux Description : Spectre & Meltdown vulnerability/mitigation checker for Linux.
------------------------------------------------------------------------------- - Update Information:
Update to 0.43. Changes: * feat: implement TAA detection (CVE-2019-11135) * feat: implement MCEPSC / iTLB Multihit detection (CVE-2018-12207) * feat: taa: add TSX_CTRL MSR detection in hardware info * feat: fwdb: use both Intel GitHub repo and MCEdb to build our firmware version database * feat: use `--live` with `--kernel`/`--config`/`--map` to override file detection in live mode * enh: rework the vuln logic of MDS with `--paranoid` (fixes [#307](https://github.com/speed47/spectre-meltdown-checker/issues/307)) * enh: explain that Enhanced IBRS is better for performance than classic IBRS * enh: kernel: autodetect customized arch kernels from cmdline * enh: kernel decompression: better tolerance against missing tools * enh: mock: implement reading from `/proc/cmdline` * fix: variant3a: Silvermont CPUs are not vulnerable to variant 3a * fix: lockdown: detect Red Hat locked down kernels (impacts MSR writes) * fix: lockdown: detect locked down mode in vanilla 5.4+ kernels * fix: sgx: on locked down kernels, fallback to CPUID bit for detection * fix: fwdb: builtin version takes precedence if the local cached version is older * fix: pteinv: don't check kernel image if not available * fix: silence useless error from grep (fixes [#322](https://github.com/speed47/spectre- meltdown-checker/issues/322)) * fix: msr: fix msr module detection under Ubuntu 19.10 (fixes [#316](https://github.com/speed47/spectre-meltdown- checker/issues/316)) * fix: mocking value for read_msr * chore: rename mcedb cmdline parameters to fwdb, and change db version scheme * chore: fwdb: update to v130.20191104+i20191027 ------------------------------------------------------------------------------- - ChangeLog:
* Wed Dec 11 2019 Reto Gantenbein <reto.gantenbein@linuxmonk.ch> - 0.43-1 - Update to 0.43 * Fri Jul 26 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.42-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Thu May 30 2019 Reto Gantenbein <reto.gantenbein@linuxmonk.ch> - 0.42-1 - Update to 0.42 * Wed May 15 2019 Reto Gantenbein <reto.gantenbein@linuxmonk.ch> - 0.41-1 - Update to 0.41 ------------------------------------------------------------------------------- -
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-eb176fa2cb' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
|
|
|
|