Define md-clear CPUID bit.
Assuming an updated host kernel and microcode, the md-clear bit will be automatically exposed to guests using the QEMU "-cpu host" arg, or libvirt "host-model" or "host-passthrough" configurations.
Guests using a named CPU model it must be manually updated to add this extra CPU feature.
Resolves CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2019-f910d35647
Please login to add feedback.
This update has been submitted for testing by berrange.
berrange edited this update.
This update has been pushed to testing.
Works fine, md-clear is propagated within VM.
This update has been submitted for batched by berrange.
This update has been submitted for stable by berrange.
This update has been pushed to stable.