L1TF is the latest variation in the meltdown/spectre saga. Again, it only applies to intel CPUs.
As part of the 4.18.1-rc1 patchset, which is available at https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.18.1-rc1.xz there are a whole set of patches, including documentation. All being well, 4.18.1 will be reeleased on Thursday late afternoon European time. There are also -rc tarballs for 4.17.15 and 4.14.63. People may wish to read the docs patch at https://lore.kernel.org/patchwork/patch/974280/ quoting for physical machines - + The Linux kernel contains a mitigation for this attack vector, PTE + inversion, which is permanently enabled and has no performance + impact. The kernel ensures that the address bits of PTEs, which are not + marked present, never point to cacheable physical memory space. ĸen -- Entropy not found, thump keyboard to continue -- http://lists.linuxfromscratch.org/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
