Stéphane Lesimple

Yes, working on it!

Yes, KVM is reporting some generic CPU to your VM, which probably happened to be an old Intel CPU (can't find which one) with CPUID 0xF61. I should add a...

Thanks for the pointer. When the CPUs have these bugs fixed in "hardware", intel sets some bits to tell the OS about this, most notably within the ARCH_CAPABILITIES they introduced...

CVE-2018-3640 is mitigated by having a patched microcode (it doesn't also need an updated kernel or hypervisor, as some other CVEs do). The microcodes version that are fixed for this...

We'll see if AMD revise their stance on this, as for now the say: > AMD believes these are not new speculation-based attacks. Keeping this open in case it changes...

Thanks for the heads up. No mitigation seems to have been included in the kernel as of now, and probably won't be, as hinted by Intel. Keeping this open for...

Key takeaways: This new vuln will apparently not get any kernel mitigation, and Intel clearly stated that there was no microcode update planned. It seems to be very difficult to...

Thanks for the notice. This CVE is part of the now-monthly batch of Intel CVEs, and this one is about the GPU part of the Intel CPU. As the fix...

Agreed, but as it's been somehow a long time since last release, I want to properly tag a new release before adding more stuff. I wanted at least MCEPSC and...

There is, by detecting the array_index_mask_nospec macro usage. Working on it, should be available soon, maybe tonight if I don't encounter any issue