stable

qemu-2.10.1-4.fc27

FEDORA-2018-9f02e5ed7b created by berrange 6 years ago for Fedora 27

Add new CPU features for CVE-2017-5715 and CVE-2018-3639 On Intel x86 hosts, the "ssbd" feature must be explicitly added to any virtual machines that are not using host-passthrough/host-model CPU setup. NB this requires new microcode too, which is not yet available in Fedora microcode_ctl RPMs. On AMD x86 hosts, the "virt-ssbd" feature must be explicitly added to any virtual machines that are not using host-passthrough/host-model CPU setup. There is no microcode dependency for AMD as this is a virtualized CPUID feature. In both cases, kernel >= 4.16.10-301 is required on the host and guest in order to activate the fix.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-9f02e5ed7b

This update has been submitted for testing by berrange.

6 years ago

This update has been pushed to testing.

6 years ago
User Icon cserpentis commented & provided feedback 6 years ago
karma

works for me in a VM

User Icon filiperosset commented & provided feedback 6 years ago
karma

no regressions noted

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

6 years ago
User Icon pwalter commented & provided feedback 6 years ago
karma

Works

This update has been submitted for batched by bodhi.

6 years ago

This update has been submitted for stable by bodhi.

6 years ago

This update has been pushed to stable.

6 years ago

Please login to add feedback.

Metadata
Type
security
Karma
3
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
6 years ago
in testing
6 years ago
in stable
6 years ago
BZ#1566890 CVE-2018-3639 hw: cpu: speculative store bypass
0
0
BZ#1592751 CVE-2018-3639 qemu: hw: cpu: speculative store bypass [fedora-all]
0
0

Automated Test Results