[gentoo-user] Kudos on prompt release of gentoo-sources w/ Zenbleed mitigation

Discussion:

(too old to reply)

Grant Edwards

2023-07-25 15:30:01 UTC

Thanks and well done to the Gentoo Kernel Project for promptly pushing
out 5.15.122, 6.1.41, et alia. Those latest kernels add mitigation for
the "Zenbleed" vulnerability found in AMD Ryzen and Epyc processors.

https://www.theregister.com/2023/07/24/amd_zenbleed_bug/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20593
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7008.html

I noticed that my Ubunutu server machines got a kernel update this
morning also, and I assumed that update also contained the Zenbleed
mitigation -- but it did not. Ubuntu apparently has not pushed out
kernel updates for that yet. [My Ubuntu machines are unaffected, but
I'd be a little worried if they were.]

Grant Edwards

2023-07-25 15:40:01 UTC

Permalink

Post by Grant Edwards
Thanks and well done to the Gentoo Kernel Project for promptly pushing
out 5.15.122, 6.1.41, et alia. Those latest kernels add mitigation for
the "Zenbleed" vulnerability found in AMD Ryzen and Epyc processors.

FWIW, Zenbleed affects only "Zen2" family parts:

https://gadgetversus.com/processor/amd-zen-2-processors-list/
https://en.wikipedia.org/wiki/Zen_2

--
Grant

Matt Connell

2023-07-25 18:50:02 UTC

Permalink

Not that I doubt you but is there a link for the specific for the fix?

I'm interested in what the mitigation was and also for "Gentoo being
awesome" propaganda purposes.

Peter Böhm

2023-07-25 19:00:01 UTC

Permalink

Post by Matt Connell
Not that I doubt you but is there a link for the specific for the fix?
I'm interested in what the mitigation was and also for "Gentoo being
awesome" propaganda purposes.

Patch:

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?
h=linux-6.1.y&id=ed9b87010aa84c157096f98c322491e9af8e8f07

https://www.phoronix.com/news/Linux-Mitigate-Zenbleed
=>
https://lock.cmpxchg8b.com/zenbleed.html

Regards,
Peter