Is Ubuntu Linux protected against the Meltdown and Spectre security flaws?
Ralf Mardorf
silver.bullet at zoho.com
Thu Mar 1 21:25:42 UTC 2018
On Thu, 1 Mar 2018 21:23:03 +0100, Ralf Mardorf wrote:
>The old KAISER and now the KPTI Linux patch sets, as well as the
>microcode, aka firmware, do not fix those issues, they "mitigate" the
>vulnerabilities.
I'm running an Ubuntu session right now.
[weremouse at moonstudio ~]$ lsb_release -rc
Release: 16.04
Codename: xenial
[weremouse at moonstudio ~]$ hwinfo --cpu | grep Model | sort -u
Model: 6.60.3 "Intel(R) Celeron(R) CPU G1840 @ 2.80GHz"
[weremouse at moonstudio ~]$ apt list -qq intel-microcode linux-image-lowlatency
intel-microcode/xenial-updates,xenial-security,now 3.20180108.0+really20170707ubuntu16.04.1 amd64 [installed]
linux-image-lowlatency/xenial-updates,xenial-security,now 4.4.0.116.122 amd64 [installed]
[weremouse at moonstudio ~]$ dmesg | grep microcode | grep -v CPU0
[ 0.059749] microcode: CPU1 microcode updated early to revision 0x22, date = 2017-01-27
[ 0.686853] microcode: CPU1 sig=0x306c3, pf=0x2, revision=0x22
[ 0.687029] microcode: Microcode Update Driver: v2.01 <tigran at aivazian.fsnet.co.uk>, Peter Oruba
[weremouse at moonstudio ~]$ ls -hAl /sys/devices/system/cpu/vulnerabilities/
total 0
-r--r--r-- 1 root root 4.0K Mar 1 22:09 meltdown
-r--r--r-- 1 root root 4.0K Mar 1 22:09 spectre_v1
-r--r--r-- 1 root root 4.0K Mar 1 22:09 spectre_v2
[weremouse at moonstudio ~]$ cat /sys/devices/system/cpu/vulnerabilities/*
Mitigation: PTI
Mitigation: OSB (observable speculation barrier, Intel v6)
Mitigation: Full generic retpoline
More information about the ubuntu-users
mailing list