spectre-meltdown-checker
reports CVE-2018-3639 aka 'Variant 4, speculative store bypass'
#9432
Labels
affects-4.2
This issue affects Qubes OS 4.2.
C: kernel
needs diagnosis
Requires technical diagnosis from developer. Replace with "diagnosed" or remove if otherwise closed.
P: default
Priority: default. Default priority for new issues, to be replaced given sufficient information.
security
This issue pertains to the security of Qubes OS.
T: bug
Type: bug report. A problem or defect resulting in unintended behavior in something that exists.
Qubes OS release
4.2.2
Brief summary
CVE-2018-3639 aka 'Variant 4, speculative store bypass' is being reported by
spectre-meltdown-checker
(#4262) with Qubes dom0 default kernel boot parameters settings (GRUB configuration).Steps to reproduce
In dom0.
Expected behavior
No such notification about vulnerability.
Actual behavior
Suggested solution
Set kernel parameter
spec_store_bypass_disable=on
. This is how security-misc (#1885) is doing this.file
/etc/default/grub.d/40_cpu_mitigations.cfg
:The text was updated successfully, but these errors were encountered: