[ubuntu-hardened] 16.04 LTS (i386/x86): the lack of a kernel hardening patches and config options? (Meltdown and Spectre attacks).
Seth Arnold
seth.arnold at canonical.com
Thu Mar 29 23:34:52 UTC 2018
On Thu, Mar 29, 2018 at 04:55:15PM +0000, daniel curtis wrote:
> Seth, what do You think? Should I install 'intel-microcode' package
> even if this mitigation is not mentioned in table mentioned above?
Hello Daniel,
I can't tell you if you should install the package or not. Intel does not
provide detailed changelogs on what is fixed for which processors in which
microcode updates. We've had unusual visibility in what they have added to
recent microcode updates only because they need compiler support or kernel
support or hypervisor support in order to enable the features.
I suggest installing the package because the updates might address issues.
There's no way to know.
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-hardened/attachments/20180329/6c054f61/attachment.sig>
More information about the ubuntu-hardened
mailing list