Recent content by Volodimir
-
V
Meltdown and Spectre Linux Kernel fixes
Yes 105 already patched against CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1' and not patched CVE-2017-5715 [branch target injection] aka 'Spectre Variant 2' So can anyone suggest when planning implement patch for CVE-2017-5715- Volodimir
- Post #176
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
Hello all, there is already released script for checking Specte and Meltdown vulnerables - see below https://github.com/speed47/spectre-meltdown-checker Current kernels 4.4.98-10x patched only for CVE-2017-5754 (Meltdown) but not for CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1'...- Volodimir
- Post #174
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
hello, issue was related that dmesg flooded messages like [72638.698664] i40e 0000:01:00.1: TX driver issue detected, PF reset issued [72639.107399] i40e 0000:01:00.1 eth1: adding 14:fe:b5:2a:2b:7b vid=0 [72639.115347] audit: type=1400 audit(1515602564.655:26027): apparmor="ALLOWED"...- Volodimir
- Post #70
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
only minor diff related to disks UUID diff /boot/grub/grub.cfg /root/grub103.cfg https://i.imgur.com/jbg1WHK.png https://i.imgur.com/wxBJi4N.png https://i.imgur.com/GyKbZxJ.png Also both servers boot in BIOS mode 103 # [ -d /sys/firmware/efi ] && echo UEFI || echo BIOS BIOS 102 # [ -d...- Volodimir
- Post #63
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
Same models and same systems, severs also have same CPU 103 kernel - 32 x Intel(R) Xeon(R) CPU E5-2620 v4 @ 2.10GHz (2 Sockets) 102 kernel - 32 x Intel(R) Xeon(R) CPU E5-2620 v4 @ 2.10GHz (2 Sockets) /proc/cpuinfo have differences only for CPU frequency # diff 102.txt /root/103.txt 8c8 < cpu...- Volodimir
- Post #60
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
Dell PowerEdge M630 # dmidecode | grep 630 Product Name: PowerEdge M630 SKU Number: SKU=NotProvided;ModelName=PowerEdge M630 at same time same model with kernel 102 have not such problems # dmidecode | grep 630 Product Name: PowerEdge M630 SKU Number...- Volodimir
- Post #57
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
For me unfortunately not # dmesg | grep "User page tables isolation" # pveversion -v proxmox-ve: 4.4-103 (running kernel: 4.4.98-3-pve) pve-manager: 4.4-20 (running version: 4.4-20/2650b7b5) pve-kernel-4.4.98-3-pve: 4.4.98-103 pve-kernel-4.4.59-1-pve: 4.4.59-87 pve-kernel-4.4.95-1-pve...- Volodimir
- Post #55
- Forum: Proxmox VE: Installation and configuration
-
V
Meltdown and Spectre Linux Kernel fixes
Can someone suggest why new 103 kernel (previous one 102 have it) have not KPTI patch: # uname -a #1 SMP PVE 4.4.98-103 (Mon, 8 Jan 2018 10:15:44 +0100) x86_64 GNU/Linux # dmesg | grep "page tables isolation" # dmesg |grep iso #- Volodimir
- Post #53
- Forum: Proxmox VE: Installation and configuration