Re: [opensuse] Time to look for a kernel update...

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Re: [opensuse] Time to look for a kernel update...

Richard Brown
Hi all,

Kernel, microcode, and qemu updates to mitigate these CPU side-channel
vulnerabilities are on the way

https://news.opensuse.org/2018/01/04/current-status-opensuse-and-spectre-meltdown-vulnerabilities/

Regards,

Richard
openSUSE Board

On 4 January 2018 at 13:53, Carlos E. R. <[hidden email]> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
> On Thursday, 2018-01-04 at 17:30 +1100, Basil Chupin wrote:
>
>> On 03/01/18 23:02, Roger Oberholtzer wrote:
>>>
>>> http://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/
>>
>>
>> Or is it a 'backdoor' which has been discovered only now?
>
>
> Second person I see asking that ;-)
>
> I doubt it. A backdoor is done subtly, and you need to control it (meaning
> you need to protect yourself, enable/disable at will).
>
> This thing affects all computers, even those on "your" side. So yes, you may
> attack others, and they can attack you back. You can not be sure the bad
> guys and intelligence agencies don't find about about this. There is no way
> you can secure your own computer, you need a redesign of the kernel in a way
> that affects speed: not something you want for yourself.
>
> - -- Cheers,
>        Carlos E. R.
>        (from openSUSE 42.2 x86_64 "Malachite" at Telcontar)
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iEYEARECAAYFAlpOI7cACgkQtTMYHG2NR9WibQCdHBatvcyWQC6JMKzhUE95f84G
> SZoAmwWtWf+z0uBbo7UcLE1CRAWPSonn
> =KZe/
> -----END PGP SIGNATURE-----
>
>
> --
> To unsubscribe, e-mail: [hidden email]
> To contact the owner, e-mail: [hidden email]
>
--
To unsubscribe, e-mail: [hidden email]
To contact the owner, e-mail: [hidden email]