The officially official Devuan Forum!

You are not logged in.

#1 2019-05-16 11:39:27

boycottsystemd
Member
Registered: 2017-09-25
Posts: 80  

ZombieLoad Attack (CVE-2018-12130), hyperthreading -how to disable it?

There is anoher intel vulnerability which uses hyperthreading.

I've booted ASCII kernel with noht parameter.

I've tried to disable hyperthreading:

sudo -i && echo 0 > /sys/devices/system/cpu/online

but

# cat /sys/devices/system/cpu/online 
0-3

Any idea pls ?

$ uname -a
4.9.0-9-amd64 #1 SMP Debian 4.9.168-1+deb9u2 (2019-05-13) x86_64 GNU/Linux

Offline

#2 2019-05-16 13:56:55

siva
Member
Registered: 2018-01-25
Posts: 204  
Website

Re: ZombieLoad Attack (CVE-2018-12130), hyperthreading -how to disable it?

boycottsystemd wrote:

There is anoher intel vulnerability which uses hyperthreading.

Similar vulnerabilities, especially from Intel, will keep coming.  2018 was the year of microcode exploits.  Until Intel releases a mass-recall to fix their hardware (they won't), just sit back and enjoy the show.

Any idea pls ?

It's good practice to find research whether or not the CVE has been resolved:
https://www.debian.org/security/2019/dsa-4444


the thomos project
thomos support thread
cynwulf wrote: "You should get some more sleep and spend less time on forums."

Offline

#3 2019-05-16 15:21:13

Head_on_a_Stick
Member
From: London
Registered: 2019-03-24
Posts: 290  
Website

Re: ZombieLoad Attack (CVE-2018-12130), hyperthreading -how to disable it?

boycottsystemd wrote:

I've booted ASCII kernel with noht parameter.

The parameter you want is nosmt.

You also need the 2019-05-14 version of the intel-microcode package and the most recent kernel version (4.9.168-1+deb9u2, install the linux-image-amd64 metapackage to get this).

EDIT: you already have the kernel.

Use this to check vulnerabilities:

grep -R . /sys/devices/system/cpu/vulnerabilities

The zombieload vulnerability corresponds to MDS in the /sys checklist.

Last edited by Head_on_a_Stick (2019-05-16 15:23:11)


Fabricando fit faber

Offline

Board footer