Bug 1519780 (CVE-2017-5715) - CVE-2017-5715 hw: cpu: speculative execution branch target injection
Summary: CVE-2017-5715 hw: cpu: speculative execution branch target injection
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2017-5715
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1476039 Engineering1519795 Engineering1519796 Engineering1519797 Engineering1519798 Engineering1525939 Engineering1525940 Engineering1525942 Engineering1525943 Engineering1525944 Engineering1525945 Engineering1525946 Engineering1525947 Engineering1525948 Engineering1525949 1526943 Engineering1526974 Engineering1526975 Engineering1526976 Engineering1526977 Engineering1526978 Engineering1526979 Engineering1526980 Engineering1526981 Engineering1526982 Engineering1526983 Engineering1526984 Engineering1526985 Engineering1526986 Engineering1526987 Engineering1526988 Engineering1526989 Engineering1526990 Engineering1526991 Engineering1526992 Engineering1526993 Engineering1526994 Engineering1526995 Engineering1526996 1527310 1527311 Engineering1527340 Engineering1527341 Engineering1527342 Engineering1527343 Engineering1527351 Engineering1527352 Engineering1527353 Engineering1527354 Engineering1527355 Engineering1527356 Engineering1527357 Engineering1527358 Engineering1527359 Engineering1527360 Engineering1527361 Red Hat1527463 Red Hat1527467 Red Hat1527468 Red Hat1527469 Red Hat1527470 Red Hat1527471 Red Hat1527472 Engineering1527549 Engineering1527550 Engineering1527601 Engineering1527603 Engineering1527863 Engineering1527864 Engineering1527865 Engineering1527913 Engineering1527914 Engineering1527919 Engineering1527931 Engineering1527932 Engineering1528023 Engineering1528024 Engineering1528285 Engineering1528286 Engineering1528287 Engineering1528623 Engineering1529308 Engineering1529309 Engineering1529310 Engineering1529311 1530827 Red Hat1532113 Red Hat1532114 Partner1532117 Partner1532118 1532143 Engineering1532733 Engineering1532734 Engineering1533626 Engineering1533627 Red Hat1537188 Engineering1538542 Engineering1542084 Engineering1542085 Embargoed1702512
Blocks: Embargoed1516900 Engineering1789852
TreeView+ depends on / blocked
 
Reported: 2017-12-01 12:59 UTC by Petr Matousek
Modified: 2022-03-13 14:34 UTC (History)
134 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks.
Clone Of: CVE-2017-5753
: CVE-2017-5754, Meltdown (view as bug list)
Environment:
Last Closed: 2018-05-28 14:00:02 UTC

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2018:0007 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 05:38:27 UTC
Red Hat Product Errata RHSA-2018:0008 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 05:41:22 UTC
Red Hat Product Errata RHSA-2018:0009 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 05:03:36 UTC
Red Hat Product Errata RHSA-2018:0010 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 04:16:37 UTC
Red Hat Product Errata RHSA-2018:0011 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 05:17:48 UTC
Red Hat Product Errata RHSA-2018:0012 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-04 05:45:38 UTC
Red Hat Product Errata RHSA-2018:0013 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-04 05:59:10 UTC
Red Hat Product Errata RHSA-2018:0014 0 normal SHIPPED_LIVE Important: linux-firmware security update 2018-01-04 10:00:02 UTC
Red Hat Product Errata RHSA-2018:0015 0 normal SHIPPED_LIVE Important: linux-firmware security update 2018-01-04 09:48:05 UTC
Red Hat Product Errata RHSA-2018:0016 0 normal SHIPPED_LIVE Important: kernel-rt security update 2018-01-04 10:49:20 UTC
Red Hat Product Errata RHSA-2018:0017 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 10:49:35 UTC
Red Hat Product Errata RHSA-2018:0018 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 18:06:10 UTC
Red Hat Product Errata RHSA-2018:0020 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 20:26:01 UTC
Red Hat Product Errata RHSA-2018:0021 0 normal SHIPPED_LIVE Important: kernel-rt security update 2018-01-04 21:50:09 UTC
Red Hat Product Errata RHSA-2018:0022 0 normal SHIPPED_LIVE Important: kernel security update 2018-01-04 22:04:18 UTC
Red Hat Product Errata RHSA-2018:0023 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-04 22:00:59 UTC
Red Hat Product Errata RHSA-2018:0024 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-04 22:08:02 UTC
Red Hat Product Errata RHSA-2018:0025 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-01-04 21:51:46 UTC
Red Hat Product Errata RHSA-2018:0026 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-04 22:03:53 UTC
Red Hat Product Errata RHSA-2018:0027 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-04 22:08:49 UTC
Red Hat Product Errata RHSA-2018:0028 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-01-04 21:52:32 UTC
Red Hat Product Errata RHSA-2018:0029 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-05 02:52:06 UTC
Red Hat Product Errata RHSA-2018:0030 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-04 23:32:26 UTC
Red Hat Product Errata RHSA-2018:0031 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-04 23:49:26 UTC
Red Hat Product Errata RHSA-2018:0032 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-04 23:28:40 UTC
Red Hat Product Errata RHSA-2018:0034 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-04 23:56:00 UTC
Red Hat Product Errata RHSA-2018:0035 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-04 23:52:50 UTC
Red Hat Product Errata RHSA-2018:0036 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-05 00:05:35 UTC
Red Hat Product Errata RHSA-2018:0037 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-05 00:01:56 UTC
Red Hat Product Errata RHSA-2018:0038 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-04 23:55:47 UTC
Red Hat Product Errata RHSA-2018:0039 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-04 23:53:35 UTC
Red Hat Product Errata RHSA-2018:0040 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-05 03:17:45 UTC
Red Hat Product Errata RHSA-2018:0044 0 normal SHIPPED_LIVE Important: redhat-virtualization-host security update 2018-01-05 20:51:31 UTC
Red Hat Product Errata RHSA-2018:0045 0 normal SHIPPED_LIVE Important: rhvm-appliance security update 2018-01-05 21:00:25 UTC
Red Hat Product Errata RHSA-2018:0046 0 normal SHIPPED_LIVE Important: rhev-hypervisor7 security update 2018-01-05 20:47:08 UTC
Red Hat Product Errata RHSA-2018:0047 0 normal SHIPPED_LIVE Important: redhat-virtualization-host security update 2018-01-05 20:47:34 UTC
Red Hat Product Errata RHSA-2018:0048 0 normal SHIPPED_LIVE Important: vdsm security update 2018-01-05 20:46:28 UTC
Red Hat Product Errata RHSA-2018:0049 0 normal SHIPPED_LIVE Important: ovirt-guest-agent-docker security and bug fix update 2018-01-05 20:50:02 UTC
Red Hat Product Errata RHSA-2018:0050 0 normal SHIPPED_LIVE Important: vdsm security update 2018-01-05 20:49:15 UTC
Red Hat Product Errata RHSA-2018:0051 0 normal SHIPPED_LIVE Important: rhevm-setup-plugins security, bug fix, and enhancement update 2018-01-05 20:57:16 UTC
Red Hat Product Errata RHSA-2018:0052 0 normal SHIPPED_LIVE Important: rhevm-setup-plugins security, bug fix, and enhancement update 2018-01-05 20:56:39 UTC
Red Hat Product Errata RHSA-2018:0053 0 normal SHIPPED_LIVE Important: linux-firmware security update 2018-01-05 22:16:50 UTC
Red Hat Product Errata RHSA-2018:0054 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security and bug fix update 2018-01-05 23:23:58 UTC
Red Hat Product Errata RHSA-2018:0055 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security and bug fix update 2018-01-05 23:23:44 UTC
Red Hat Product Errata RHSA-2018:0056 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-01-05 23:22:36 UTC
Red Hat Product Errata RHSA-2018:0057 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-01-05 23:23:30 UTC
Red Hat Product Errata RHSA-2018:0058 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-01-05 23:23:13 UTC
Red Hat Product Errata RHSA-2018:0059 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-01-05 23:22:54 UTC
Red Hat Product Errata RHSA-2018:0060 0 normal SHIPPED_LIVE Important: qemu-kvm-rhev security update 2018-02-16 06:00:00 UTC
Red Hat Product Errata RHSA-2018:0089 0 normal SHIPPED_LIVE Important: Red Hat CloudForms 4.1 security update 2018-01-16 02:34:27 UTC
Red Hat Product Errata RHSA-2018:0090 0 normal SHIPPED_LIVE Important: Red Hat CloudForms 4.2 security update 2018-01-16 02:35:02 UTC
Red Hat Product Errata RHSA-2018:0091 0 normal SHIPPED_LIVE Important: Red Hat CloudForms 4.5 security update 2018-01-16 02:35:36 UTC
Red Hat Product Errata RHSA-2018:0092 0 normal SHIPPED_LIVE Important: Red Hat CloudForms 4.0 security update 2018-01-17 01:58:35 UTC
Red Hat Product Errata RHSA-2018:0093 0 normal SHIPPED_LIVE Important: microcode_ctl security update 2018-01-17 03:25:57 UTC
Red Hat Product Errata RHSA-2018:0094 0 normal SHIPPED_LIVE Important: linux-firmware security update 2018-01-17 03:05:34 UTC
Red Hat Product Errata RHSA-2018:0103 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-22 15:31:40 UTC
Red Hat Product Errata RHSA-2018:0104 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-22 15:43:26 UTC
Red Hat Product Errata RHSA-2018:0105 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-22 15:30:36 UTC
Red Hat Product Errata RHSA-2018:0106 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-22 15:26:22 UTC
Red Hat Product Errata RHSA-2018:0107 0 normal SHIPPED_LIVE Important: qemu-kvm security update 2018-01-22 15:26:47 UTC
Red Hat Product Errata RHSA-2018:0108 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-22 15:46:35 UTC
Red Hat Product Errata RHSA-2018:0109 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-22 15:44:41 UTC
Red Hat Product Errata RHSA-2018:0110 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-22 15:43:02 UTC
Red Hat Product Errata RHSA-2018:0111 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-22 15:40:21 UTC
Red Hat Product Errata RHSA-2018:0112 0 normal SHIPPED_LIVE Important: libvirt security update 2018-01-22 15:39:57 UTC
Red Hat Product Errata RHSA-2018:0151 0 normal SHIPPED_LIVE Important: kernel security and bug fix update 2018-01-25 16:17:48 UTC
Red Hat Product Errata RHSA-2018:0182 0 normal SHIPPED_LIVE Important: kernel security and bug fix update 2018-01-25 16:59:45 UTC
Red Hat Product Errata RHSA-2018:0292 0 normal SHIPPED_LIVE Important: kernel security update 2018-02-09 17:57:26 UTC
Red Hat Product Errata RHSA-2018:0496 0 normal SHIPPED_LIVE Important: kernel security and bug fix update 2018-03-13 19:12:18 UTC
Red Hat Product Errata RHSA-2018:0512 0 normal SHIPPED_LIVE Important: kernel security and bug fix update 2018-03-13 22:38:36 UTC
Red Hat Product Errata RHSA-2018:0654 0 None None None 2018-04-10 05:08:55 UTC
Red Hat Product Errata RHSA-2018:1196 0 normal SHIPPED_LIVE Important: kernel security and bug fix update 2018-04-23 16:59:43 UTC
Red Hat Product Errata RHSA-2018:1252 0 None None None 2018-04-25 20:37:48 UTC
Red Hat Product Errata RHSA-2018:1967 0 None None None 2018-06-26 15:41:41 UTC

Description Petr Matousek 2017-12-01 12:59:35 UTC 
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.

Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks.
Comment 22 Petr Matousek 2018-01-03 19:29:05 UTC 
Acknowledgments:

Name: Google Project Zero
Comment 25 Petr Matousek 2018-01-03 22:55:08 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1530827]
Comment 27 errata-xmlrpc 2018-01-03 23:17:29 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support

Via RHSA-2018:0010 https://access.redhat.com/errata/RHSA-2018:0010
Comment 28 errata-xmlrpc 2018-01-04 00:04:23 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0009 https://access.redhat.com/errata/RHSA-2018:0009
Comment 29 errata-xmlrpc 2018-01-04 00:18:39 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.7 Extended Update Support

Via RHSA-2018:0011 https://access.redhat.com/errata/RHSA-2018:0011
Comment 30 errata-xmlrpc 2018-01-04 00:40:04 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0007 https://access.redhat.com/errata/RHSA-2018:0007
Comment 31 errata-xmlrpc 2018-01-04 00:44:23 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:0008 https://access.redhat.com/errata/RHSA-2018:0008
Comment 32 errata-xmlrpc 2018-01-04 00:46:29 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0012 https://access.redhat.com/errata/RHSA-2018:0012
Comment 33 errata-xmlrpc 2018-01-04 00:59:40 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:0013 https://access.redhat.com/errata/RHSA-2018:0013
Comment 34 errata-xmlrpc 2018-01-04 04:48:28 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0015 https://access.redhat.com/errata/RHSA-2018:0015
Comment 35 errata-xmlrpc 2018-01-04 05:00:33 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0014 https://access.redhat.com/errata/RHSA-2018:0014
Comment 36 errata-xmlrpc 2018-01-04 05:50:25 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0016 https://access.redhat.com/errata/RHSA-2018:0016
Comment 37 errata-xmlrpc 2018-01-04 05:52:33 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.6 Advanced Update Support
  Red Hat Enterprise Linux 6.6 Telco Extended Update Support

Via RHSA-2018:0017 https://access.redhat.com/errata/RHSA-2018:0017
Comment 38 errata-xmlrpc 2018-01-04 13:07:02 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.4 Advanced Update Support

Via RHSA-2018:0018 https://access.redhat.com/errata/RHSA-2018:0018
Comment 39 errata-xmlrpc 2018-01-04 16:53:19 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.2 Advanced Update Support

Via RHSA-2018:0020 https://access.redhat.com/errata/RHSA-2018:0020
Comment 40 errata-xmlrpc 2018-01-04 16:56:27 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise MRG 2

Via RHSA-2018:0021 https://access.redhat.com/errata/RHSA-2018:0021
Comment 41 errata-xmlrpc 2018-01-04 16:58:11 UTC 
This issue has been addressed in the following products:

  RHEV 4.X RHEV-H and Agents for RHEL-7

Via RHSA-2018:0025 https://access.redhat.com/errata/RHSA-2018:0025
Comment 42 errata-xmlrpc 2018-01-04 16:59:37 UTC 
This issue has been addressed in the following products:

  RHEV 3.X Hypervisor and Agents for RHEL-7 ELS

Via RHSA-2018:0028 https://access.redhat.com/errata/RHSA-2018:0028
Comment 43 errata-xmlrpc 2018-01-04 17:02:22 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0023 https://access.redhat.com/errata/RHSA-2018:0023
Comment 44 errata-xmlrpc 2018-01-04 17:04:45 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support

Via RHSA-2018:0026 https://access.redhat.com/errata/RHSA-2018:0026
Comment 45 errata-xmlrpc 2018-01-04 17:06:39 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.5 Advanced Update Support

Via RHSA-2018:0022 https://access.redhat.com/errata/RHSA-2018:0022
Comment 46 errata-xmlrpc 2018-01-04 17:09:05 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:0024 https://access.redhat.com/errata/RHSA-2018:0024
Comment 47 errata-xmlrpc 2018-01-04 17:10:32 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0027 https://access.redhat.com/errata/RHSA-2018:0027
Comment 48 errata-xmlrpc 2018-01-04 18:29:34 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support

Via RHSA-2018:0032 https://access.redhat.com/errata/RHSA-2018:0032
Comment 49 errata-xmlrpc 2018-01-04 18:32:46 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:0030 https://access.redhat.com/errata/RHSA-2018:0030
Comment 50 errata-xmlrpc 2018-01-04 18:49:56 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0031 https://access.redhat.com/errata/RHSA-2018:0031
Comment 51 errata-xmlrpc 2018-01-04 18:54:20 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support

Via RHSA-2018:0035 https://access.redhat.com/errata/RHSA-2018:0035
Comment 52 errata-xmlrpc 2018-01-04 18:57:04 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.2 Advanced Update Support

Via RHSA-2018:0039 https://access.redhat.com/errata/RHSA-2018:0039
Comment 53 errata-xmlrpc 2018-01-04 19:00:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.4 Advanced Update Support

Via RHSA-2018:0038 https://access.redhat.com/errata/RHSA-2018:0038
Comment 54 errata-xmlrpc 2018-01-04 19:02:37 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0034 https://access.redhat.com/errata/RHSA-2018:0034
Comment 55 errata-xmlrpc 2018-01-04 19:03:58 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.6 Advanced Update Support
  Red Hat Enterprise Linux 6.6 Telco Extended Update Support

Via RHSA-2018:0037 https://access.redhat.com/errata/RHSA-2018:0037
Comment 56 errata-xmlrpc 2018-01-04 19:06:16 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.7 Extended Update Support

Via RHSA-2018:0036 https://access.redhat.com/errata/RHSA-2018:0036
Comment 57 errata-xmlrpc 2018-01-04 21:52:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0029 https://access.redhat.com/errata/RHSA-2018:0029
Comment 58 errata-xmlrpc 2018-01-04 22:18:03 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.5 Advanced Update Support

Via RHSA-2018:0040 https://access.redhat.com/errata/RHSA-2018:0040
Comment 60 errata-xmlrpc 2018-01-05 15:47:52 UTC 
This issue has been addressed in the following products:

  RHEV 3.X Hypervisor and Agents for RHEL-7 ELS

Via RHSA-2018:0048 https://access.redhat.com/errata/RHSA-2018:0048
Comment 61 errata-xmlrpc 2018-01-05 15:50:15 UTC 
This issue has been addressed in the following products:

  RHEV 3.X Hypervisor and Agents for RHEL-6
  RHEV 3.X Hypervisor and Agents for RHEL-7 ELS

Via RHSA-2018:0046 https://access.redhat.com/errata/RHSA-2018:0046
Comment 62 errata-xmlrpc 2018-01-05 15:53:03 UTC 
This issue has been addressed in the following products:

  RHEV 4.X RHEV-H and Agents for RHEL-7

Via RHSA-2018:0047 https://access.redhat.com/errata/RHSA-2018:0047
Comment 63 errata-xmlrpc 2018-01-05 15:54:54 UTC 
This issue has been addressed in the following products:

  RHEV 4.X RHEV-H and Agents for RHEL-7

Via RHSA-2018:0050 https://access.redhat.com/errata/RHSA-2018:0050
Comment 64 errata-xmlrpc 2018-01-05 15:58:26 UTC 
This issue has been addressed in the following products:

  RHEV 3.X Hypervisor and Agents for RHEL-7

Via RHSA-2018:0044 https://access.redhat.com/errata/RHSA-2018:0044
Comment 65 errata-xmlrpc 2018-01-05 16:02:27 UTC 
This issue has been addressed in the following products:

  RHEV 4.X RHEV-H and Agents for RHEL-7

Via RHSA-2018:0049 https://access.redhat.com/errata/RHSA-2018:0049
Comment 66 errata-xmlrpc 2018-01-05 16:03:58 UTC 
This issue has been addressed in the following products:

  RHEV Manager version 3.6

Via RHSA-2018:0052 https://access.redhat.com/errata/RHSA-2018:0052
Comment 67 errata-xmlrpc 2018-01-05 16:05:26 UTC 
This issue has been addressed in the following products:

  RHEV Engine version 4.1

Via RHSA-2018:0051 https://access.redhat.com/errata/RHSA-2018:0051
Comment 68 errata-xmlrpc 2018-01-05 16:07:13 UTC 
This issue has been addressed in the following products:

  RHEV 4.X RHEV-H and Agents for RHEL-7

Via RHSA-2018:0045 https://access.redhat.com/errata/RHSA-2018:0045
Comment 69 errata-xmlrpc 2018-01-05 17:17:35 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support

Via RHSA-2018:0053 https://access.redhat.com/errata/RHSA-2018:0053
Comment 70 errata-xmlrpc 2018-01-05 18:25:12 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 8.0 (Liberty)

Via RHSA-2018:0056 https://access.redhat.com/errata/RHSA-2018:0056
Comment 71 errata-xmlrpc 2018-01-05 18:26:32 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 11.0 (Ocata)

Via RHSA-2018:0059 https://access.redhat.com/errata/RHSA-2018:0059
Comment 72 errata-xmlrpc 2018-01-05 18:27:47 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 10.0 (Newton)

Via RHSA-2018:0058 https://access.redhat.com/errata/RHSA-2018:0058
Comment 73 errata-xmlrpc 2018-01-05 18:29:03 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 9.0 (Mitaka)

Via RHSA-2018:0057 https://access.redhat.com/errata/RHSA-2018:0057
Comment 74 errata-xmlrpc 2018-01-05 18:30:19 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7

Via RHSA-2018:0055 https://access.redhat.com/errata/RHSA-2018:0055
Comment 75 errata-xmlrpc 2018-01-05 18:31:33 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7

Via RHSA-2018:0054 https://access.redhat.com/errata/RHSA-2018:0054
Comment 76 errata-xmlrpc 2018-01-05 18:32:56 UTC 
This issue has been addressed in the following products:

  Red Hat OpenStack Platform 12.0 (Pike)

Via RHSA-2018:0060 https://access.redhat.com/errata/RHSA-2018:0060
Comment 80 Sam Fowler 2018-01-08 07:19:31 UTC 
Added affects for arm-trusted-firmware based on this advisory:

https://github.com/ARM-software/arm-trusted-firmware/wiki/ARM-Trusted-Firmware-Security-Advisory-TFV-6
Comment 81 Sam Fowler 2018-01-08 07:21:09 UTC 
Created arm-trusted-firmware tracking bugs for this issue:

Affects: fedora-all [bug 1532143]
Comment 83 Jordy Zomer 2018-01-09 12:18:27 UTC 
According to https://access.redhat.com/errata/RHSA-2018:0012 this should be fixed on RHEL7 when upgrading microcode_ctl to microcode_ctl-2.1-22.2.el7.x86_64.

This can be mitigated by doing the following:

*   Hardware (CPU microcode) support for mitigation
*   Kernel support for IBRS
*   IBRS enabled for Kernel space
*   IBRS enabled for User space

When I check this, it does have Hardware (CPU microcode) support for mitigation and Kernel support for IBRS. 

Yet IBRS is still not enabled for kernel or user space by default.

Which means you remain vulnerable to the attack.

I validated the above through:

[root@vds-jordyzomer ~]# cat /sys/kernel/debug/x86/ibrs_enabled
0

This variable needs to be set to 2 for the patch to take effect.
Comment 84 Ugo Bellavance 2018-01-09 15:48:05 UTC 
On my systems, I get a 1 in this file:

# cat /sys/kernel/debug/x86/ibrs_enabled
1

It passes the test found here: https://github.com/speed47/spectre-meltdown-checker

Are you running on bare metal? I get a 0 on virtualized guests (VMware)
Comment 85 vvm7ua 2018-01-09 15:55:28 UTC 
On my dedicated server(SuperMicro MB X11SSL-F,  Intel(R) Xeon(R) CPU E3-1270 v5 @ 3.60GHz, OS CentOS 7 )
# cat /sys/kernel/debug/x86/ibrs_enabled
0
# cat /var/log/yum.log|grep "kernel\|micro"
Jan 09 10:42:56 Updated: kernel-tools-libs-3.10.0-693.11.6.el7.x86_64
Jan 09 10:43:07 Installed: kernel-3.10.0-693.11.6.el7.x86_64
Jan 09 10:43:18 Updated: kernel-tools-3.10.0-693.11.6.el7.x86_64
Jan 09 10:43:23 Updated: 2:microcode_ctl-2.1-22.2.el7.x86_64
#
Comment 86 Jordy Zomer 2018-01-09 16:00:29 UTC 
It is indeed a virtualized guest. I believe it appears the Processors are too old. I believe there's no patch available yet for older hardware. Only newer processors.

@vvm7ua Your processor is from 2015. The defaults for older processors are:

pti - 1
ibpb - 0
ibrs - 0 

Looks like we will have to wait :)
Comment 87 Klaas Demter 2018-01-09 16:27:11 UTC 
The microcode update microcode_ctl-2.1-22.2.el7.x86_64 only includes updates for certain cpus, what you need is a bios update by your server vendor or a microcode update for your cpu.

If the microcode/bios update is working your cpu will show show with new flags in lscpu: spec_ctrl and ibpb_support
if those are in place ibpb and ibrs default to 1 on boot. (see https://access.redhat.com/articles/3311301).
Comment 91 Robin 2018-01-13 10:37:44 UTC 
Hi,
Can I know where the fix for libvirt is as I can't find it in libvirt's upstream or maillist?
Thanks!
Comment 92 Ugo Bellavance 2018-01-15 01:46:54 UTC 
Did you check https://access.redhat.com/security/vulnerabilities/speculativeexecution, resolve tab?
Comment 93 Jiri Denemark 2018-01-15 09:04:14 UTC 
(In reply to Robin from comment #91)
> Can I know where the fix for libvirt is as I can't find it in libvirt's
> upstream or maillist?

https://www.redhat.com/archives/libvir-list/2018-January/msg00282.html
Comment 94 Robin 2018-01-15 09:34:07 UTC 
(In reply to Jiri Denemark from comment #93)
> (In reply to Robin from comment #91)
> > Can I know where the fix for libvirt is as I can't find it in libvirt's
> > upstream or maillist?
> 
> https://www.redhat.com/archives/libvir-list/2018-January/msg00282.html

Thanks a lot Jiri! The code is really helpful which is what I want!
Comment 95 errata-xmlrpc 2018-01-15 21:36:41 UTC 
This issue has been addressed in the following products:

  CloudForms Management Engine 4.1

Via RHSA-2018:0089 https://access.redhat.com/errata/RHSA-2018:0089
Comment 96 errata-xmlrpc 2018-01-15 21:39:39 UTC 
This issue has been addressed in the following products:

  CloudForms Management Engine 4.2

Via RHSA-2018:0090 https://access.redhat.com/errata/RHSA-2018:0090
Comment 97 errata-xmlrpc 2018-01-15 21:43:02 UTC 
This issue has been addressed in the following products:

  CloudForms Management Engine 4.5

Via RHSA-2018:0091 https://access.redhat.com/errata/RHSA-2018:0091
Comment 98 errata-xmlrpc 2018-01-16 20:59:44 UTC 
This issue has been addressed in the following products:

  CloudForms Management Engine 5.5

Via RHSA-2018:0092 https://access.redhat.com/errata/RHSA-2018:0092
Comment 99 errata-xmlrpc 2018-01-16 22:06:29 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7
  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0094 https://access.redhat.com/errata/RHSA-2018:0094
Comment 100 errata-xmlrpc 2018-01-16 22:27:02 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.2 Advanced Update Support
  Red Hat Enterprise Linux 6.4 Advanced Update Support
  Red Hat Enterprise Linux 6.5 Advanced Update Support
  Red Hat Enterprise Linux 6.6 Advanced Update Support
  Red Hat Enterprise Linux 6.6 Telco Extended Update Support
  Red Hat Enterprise Linux 6.7 Extended Update Support
  Red Hat Enterprise Linux 7.2 Advanced Update Support
  Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 7.2 Telco Extended Update Support
  Red Hat Enterprise Linux 7.3 Extended Update Support
  Red Hat Enterprise Linux 7
  Red Hat Enterprise Linux 6

Via RHSA-2018:0093 https://access.redhat.com/errata/RHSA-2018:0093
Comment 101 errata-xmlrpc 2018-01-22 10:27:16 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.4 Advanced Update Support

Via RHSA-2018:0106 https://access.redhat.com/errata/RHSA-2018:0106
Comment 102 errata-xmlrpc 2018-01-22 10:28:06 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.2 Advanced Update Support

Via RHSA-2018:0107 https://access.redhat.com/errata/RHSA-2018:0107
Comment 103 errata-xmlrpc 2018-01-22 10:32:21 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.5 Advanced Update Support

Via RHSA-2018:0105 https://access.redhat.com/errata/RHSA-2018:0105
Comment 104 errata-xmlrpc 2018-01-22 10:33:19 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.7 Extended Update Support

Via RHSA-2018:0103 https://access.redhat.com/errata/RHSA-2018:0103
Comment 105 errata-xmlrpc 2018-01-22 10:40:49 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.2 Advanced Update Support

Via RHSA-2018:0112 https://access.redhat.com/errata/RHSA-2018:0112
Comment 106 errata-xmlrpc 2018-01-22 10:41:39 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.4 Advanced Update Support

Via RHSA-2018:0111 https://access.redhat.com/errata/RHSA-2018:0111
Comment 107 errata-xmlrpc 2018-01-22 10:43:59 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.5 Advanced Update Support

Via RHSA-2018:0110 https://access.redhat.com/errata/RHSA-2018:0110
Comment 108 errata-xmlrpc 2018-01-22 10:45:05 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.6 Advanced Update Support
  Red Hat Enterprise Linux 6.6 Telco Extended Update Support

Via RHSA-2018:0104 https://access.redhat.com/errata/RHSA-2018:0104
Comment 109 errata-xmlrpc 2018-01-22 10:45:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.6 Advanced Update Support
  Red Hat Enterprise Linux 6.6 Telco Extended Update Support

Via RHSA-2018:0109 https://access.redhat.com/errata/RHSA-2018:0109
Comment 110 errata-xmlrpc 2018-01-22 10:49:43 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.7 Extended Update Support

Via RHSA-2018:0108 https://access.redhat.com/errata/RHSA-2018:0108
Comment 111 errata-xmlrpc 2018-01-25 11:27:54 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0151 https://access.redhat.com/errata/RHSA-2018:0151
Comment 112 errata-xmlrpc 2018-01-25 12:01:04 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.3 Extended Update Support

Via RHSA-2018:0182 https://access.redhat.com/errata/RHSA-2018:0182
Comment 114 errata-xmlrpc 2018-02-09 12:57:24 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 5 Extended Lifecycle Support

Via RHSA-2018:0292 https://access.redhat.com/errata/RHSA-2018:0292
Comment 115 errata-xmlrpc 2018-03-13 14:46:05 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6.7 Extended Update Support

Via RHSA-2018:0496 https://access.redhat.com/errata/RHSA-2018:0496
Comment 116 errata-xmlrpc 2018-03-13 18:25:06 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2018:0512 https://access.redhat.com/errata/RHSA-2018:0512
Comment 117 errata-xmlrpc 2018-04-10 05:08:12 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:0654 https://access.redhat.com/errata/RHSA-2018:0654
Comment 118 errata-xmlrpc 2018-04-23 12:58:49 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 5 Extended Lifecycle Support

Via RHSA-2018:1196 https://access.redhat.com/errata/RHSA-2018:1196
Comment 120 errata-xmlrpc 2018-04-25 20:37:03 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 5.9 Long Life

Via RHSA-2018:1252 https://access.redhat.com/errata/RHSA-2018:1252
Comment 124 errata-xmlrpc 2018-06-26 15:41:03 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:1967 https://access.redhat.com/errata/RHSA-2018:1967
Comment 128 Doran Moppert 2020-03-27 02:43:12 UTC 
Statement:

Please see the Vulnerability Response article for the full list of updates available and a detailed discussion of this issue.
Comment 129 Doran Moppert 2020-03-27 02:43:19 UTC 
External References:

https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html
https://spectreattack.com/
https://meltdownattack.com
Note You need to log in before you can comment on or make changes to this bug.