On Tue, May 14, 2019 at 08:03:48PM +0200, Jiri Denemark wrote:
This series introduces the libvirt side of mitigations for
Microarchitectural Data Sampling microprocessor flaws (CVE-2018-12126,
CVE-2018-12127, CVE-2018-12130, CVE-2019-11091) which were
published earlier today.
To protect your system against possible attacks exploiting these flaws
updates to the CPU microcode, Linux kernel, and virtualization stack
(QEMU, libvirt, and higher management apps) are required.
See
https://access.redhat.com/security/vulnerabilities/mds for more
details and additional links.
Both patches have already been pushed.
FYI I have pushed cherry picks to v4.7-maint, v5.1-maint, and v5.3-maint
which are the versions we have in active Fedora use.
I'll see about getting them backported to further maint branches as we
have patches from RHEL that should apply fairly easily to quite a few
other maint branches upstream.
Regards,
Daniel
--
|:
https://berrange.com -o-
https://www.flickr.com/photos/dberrange :|
|:
https://libvirt.org -o-
https://fstop138.berrange.com :|
|:
https://entangle-photo.org -o-
https://www.instagram.com/dberrange :|