CLD-201 Details

Other IDs this deficiency may be known by:

CVE ID CVE-2017-5753 (nvd) (mitre) (debian) (archlinux) (red hat) (suse) (ubuntu)
Other ID(s) Spectre

Basic Information:

Affected Package(s) linux
Deficiency Type SECURITY
Date Created 2018-01-07 13:45:00
Date Last Modified 2018-05-30 17:11:45

Version Specific Information:

Cucumber 1.0 i686 fixed in linux-4.9.77-i686-1
Cucumber 1.0 x86_64 fixed in linux-4.9.77-x86_64-1

Cucumber 1.1 i686 fixed in linux-4.9.77-i686-1
Cucumber 1.1 x86_64 fixed in linux-4.9.77-x86_64-1

Details:

==================================== Edit #2 ===================================

Further mitigated against in Linyhx 4.9.104. Here are the details from the
relevant changelog entry:

+----------------+
Wed May 30 17:03:56 EDT 2018
base/linux upgraded from 4.9.103 to 4.9.104 to fix CVE-2018-6412 and further
	mitigate against Spectre variant 1 (CVE-2017-5753). For more information
	see:
		https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.104
		https://security.cucumberlinux.com/security/details.php?id=201
		https://security.cucumberlinux.com/security/details.php?id=419
kernel/linux-source upgraded from 4.9.103 to 4.9.104
* SECURITY FIX *
+----------------+

==================================== Edit #2 ===================================

This vulnerability has been even further mitigated against in version 4.9.100 of
the Linux kernel. Here are the details from the relevant changelog entry:

+----------------+
Wed May 16 19:08:30 EDT 2018
base/linux upgraded from 4.9.99 to 4.9.100. This release introduces many new
	mitigations for the Spectre v1 vulnerability (CVE-2017-5753). For more
	information see:
		https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.100
		https://security.cucumberlinux.com/security/details.php?id=201
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753
kernel/linux-source upgraded from 4.9.99 to 4.9.100
* SECURITY FIX *
+----------------+

==================================== Edit #1 ===================================
 
This vulnerability has been further mitigated against in version 4.9.81 of the 
Linux kernel. For further details see: 
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.81

================================ Original Post =================================

This is a hardware vulnerability, and as of Sun Jan  7 14:15:45 EST 2018 there
is no known fix for it or known way to mitigate the effects of it.

See https://meltdownattack.com/ for more information about this vulnerability.