On 12/17/20 2:40 AM, Jan Beulich wrote: > On 17.12.2020 02:51, boris.ostrov...@oracle.com wrote: > I think this is acceptable as a workaround, albeit we may want to > consider further restricting this (at least on staging), like e.g. > requiring a guest config setting to enable the workaround.
Maybe, but then someone migrating from a stable release to 4.15 will have to modify guest configuration. > But > maybe this will need to be part of the MSR policy for the domain > instead, down the road. We'll definitely want Andrew's view here. > > Speaking of staging - before applying anything to the stable > branches, I think we want to have this addressed on the main > branch. I can't see how Solaris would work there. Indeed it won't. I'll need to do that as well (I misinterpreted the statement in the XSA about only 4.14- being vulnerable) -boris
