[SOLVED] x86 cpu_insecure vulnerabily

intel
security

#1

I often check phoronix.com for linux, open source, and hardware(benchmarks) news.
And I found that recent generations of x86 cpus(yes, intel and amd) suffer from a bug in the PTI(page table isolation). That leaks data from kernel space to userpace which caused a BIG impact on performace.
The strange thing that manjaro community haven’t talked about this!
Check the output of: "cat /proc/cpuinfo"
if you find in bugs line: “bugs: cpu_insecure” then you’re affected!
What happened? bios corruptions in intel spi driver? cpu_insecure bug? What are your thoughts?


#2

This has already been fixed in the testing branch. The Manjaro community has definitely talked about this.


#3

How it got fixed?
Also, it’s urgent so it has to be merged to stable.


#4

The kernel has been patched to handle Page Table Isolation in a secure manner.


#5

So it has merged to stable and the output of cpuinfo won’t show this bug?
PS: I don’t have a recent gen (i3 5th gen) that’s why I ask.


#6

It is in Manjaro testing. It will reach the stable branch the next time a stable update occurs.


#7

Good!. I hope it happens soon!


#8

Yeah, fixed (khm… “fixed”) here:

Discussion:


#9

Note the cpu_insecure in /proc/cpuinfo only shows up if you are already running a patched kernel. The ability to detect the bug wasn’t present in previous kernels.


#10

Doing the

cat/proc/cpuinfo

command I get this:

bugs            : fxsave_leak sysret_ss_attrs null_seg

I’m using a

AMD FX(tm)-8350 Eight-Core Processor

Is this something to worry about? It’s more than a year old already, according to search results on the Arch forum.
No idea what it does though.


#11

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.