[Security-Discuss] Patching RH Linux Boxes Against new CPU (Meltdown & Spectre)

Shailesh Prajapati prajapatisk at gmail.com
Wed Jan 10 09:58:44 EST 2018


Thomas,

Thanks for this info.
I would also recommend folks to check this website read this
https://spectreattack.com/





On Thu, Jan 4, 2018 at 4:03 PM, Weeks, Thomas <t.weeks at vt.edu> wrote:

> I don't normally send out security announcements.. but this is so huge it
> demands some extra attention..
>
> Here's a really great security bulletin by a good X-Racker friend of mine
> (now a security lead at Red Hat) on the big processor/kernel Side-Channel
> attack vectors (by Meltdown/Spectre).
> https://access.redhat.com/security/vulnerabilities/speculativeexecution
>
> If you run Red Hat base distros, stay tuned to the Advisory/Update column
> of the "Resolve" tab of this super critical security bulletin.
>
>
> TL;DR
> The packages you'll want to watch for updates on are kernel, libvirt and
> qemu-kvm (as well as kernel-rt and dracut on RHEL7):
>
> Post any of your findings, tips or suggestions here please.. we're all in
> this one for the long term!
>
>
> p.s. Invite security friends to both this list: http://lists.rbtc.tech/
> mailman/listinfo/security-discuss
> and the main [Security-Announce] list: http://lists.rbtc.tech/
> mailman/listinfo/security-announce
> Both run the mailman email list server, and as such have archives that are
> google indexed, and thus VERY useful for recalling useful things you can't
> quite remember.. :)
>
>  T.Weeks
>  Thomas "Tweeks" Weeks
>  Director, Technology Futures and Community Advocacy
>  Division of Information Technology, Virginia Tech
>
> _______________________________________________
> Security-Discuss mailing list
> Security-Discuss at lists.rbtc.tech
> http://lists.rbtc.tech/mailman/listinfo/security-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rbtc.tech/pipermail/security-discuss/attachments/20180110/ad04866d/attachment.html>


More information about the Security-Discuss mailing list