Another Intel CPU security flaw - Zombieload
FedoraForum.org - Fedora Support Forums and Community
Results 1 to 4 of 4
  1. #1
    Join Date
    Jul 2013
    Location
    NZ
    Posts
    454
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Another Intel CPU security flaw - Zombieload

    https://techcrunch.com/2019/05/14/zo...el-processors/

    Wonder how much performance the fix will cost.

  2. #2
    Join Date
    Feb 2005
    Location
    London, UK
    Posts
    933
    Mentioned
    3 Post(s)
    Tagged
    0 Thread(s)

    Re: Another Intel CPU security flaw - Zombieload

    It looks like the fix is in kernel 5.0.16, F29 is only on 5.0.14 right now so I guess we need to wait a few days for the patches to reach us. Not sure what kernel F30 is running? Supposedly an "up to 10%" performance hit.

    https://www.phoronix.com/scan.php?pa...S-Kernel-Fixes

  3. #3
    Join Date
    Feb 2005
    Location
    London, UK
    Posts
    933
    Mentioned
    3 Post(s)
    Tagged
    0 Thread(s)

    Re: Another Intel CPU security flaw - Zombieload

    I just compiled a 5.0.16 kernel and ran 5 tests using "sysbench cpu --threads=8 run" and got the following results to compare against 5.0.13:

    Code:
    [haydn@darkstar sysbench]$ egrep "events\ per\ second|5\.0\.1" tests.txt 
    5.0.13-200.fc29.x86_64
        events per second:  6221.22
        events per second:  6206.26
        events per second:  6207.21
        events per second:  6212.50
        events per second:  6205.84
    5.0.16-zombieloadPerfTest
        events per second:  6191.64
        events per second:  6192.09
        events per second:  6190.48
        events per second:  6195.99
        events per second:  6205.10
    [haydn@darkstar sysbench]$

    Not much in it, about 0.25%.
    Last edited by HaydnH; 15th May 2019 at 02:02 PM.

  4. #4
    Join Date
    May 2018
    Location
    UK
    Posts
    233
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Another Intel CPU security flaw - Zombieload

    5.0.16 kernels now in stable for both F29 and F30 although some mirrors still to catch up.

    See https://bodhi.fedoraproject.org/upda...019-640f8d8dd1 for F30 and https://bodhi.fedoraproject.org/upda...019-e6bf55e821 for F29.

    Note the release comment from Greg Kroah-Hartman
    Note, this release, and the other stable releases that are all being released right now at the same time, just went out all contain patches that have only seen the "public eye" for about 5 minutes. So be forwarned, they might break things, they might not build, but hopefully they fix things. Odds are we will be fixing a number of small things in this area for the next few weeks as things shake out on real hardware and workloads. So don't think you are done updating your kernel, you never are done with that

Similar Threads

  1. Security flaw fix in Fedora?
    By Novatian in forum Security and Privacy
    Replies: 3
    Last Post: 20th August 2016, 05:58 PM
  2. Security flaw of ACL
    By Ashish Sood in forum Servers & Networking
    Replies: 4
    Last Post: 30th April 2013, 08:43 AM
  3. X.Org Servers Updated To Fix Security Flaw
    By mmix in forum Security and Privacy
    Replies: 0
    Last Post: 17th April 2013, 02:38 PM
  4. yet ANOTHER IE security flaw
    By tejas in forum Wibble
    Replies: 16
    Last Post: 26th August 2005, 12:35 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •