Stuart Henderson <stu.lists@spacehopper.org> wrote:
> On 2023-07-25, Kevin <spytag@gmail.com> wrote:
> > Regarding the Zenbleed vulnerability itself, none of our AMD hosts are
> > known to be vulnerable at this time as they are all running Milan and
> > later CPUs.
>
> rather than going with "none are known to be vulnerable" they should
> probably run the PoC program themselves and see whether strings from
> other VMs show up
Since they are emulating the behaviour of the DE_CFG register, they should
allow (and ignore) setting that bit, because other operating systems are
going to assume the same.
Hypervisors gotta do stuff like that.
No comments:
Post a Comment