from the tail end of the theregister article... *PS: It appears 64-bit ARM Linux kernels will also get <https://lwn.net/Articles/740393/> a set of KAISER patches, completely splitting the kernel and user spaces, to block attempts to defeat KASLR. We'll be following up this week.* On 3 January 2018 at 20:03, Erik Christiansen via luv-main < luv-main@luv.asn.au> wrote:
On 03.01.18 15:11, Arjen Lentz via luv-main wrote:
This raises the interesting question: will distros start to provide separate kernel packages for Intel and AMD CPUs. I'd guess they will, as the performance hit of the KPTI workaround is significant.
I use AMD desktops and servers at my home office, and naturally I'd like to keep the performance they deliver.
Sadly, the AMD cpus have a variant of the Intel Management Engine lurking under the hood, with a further unknown vulnerability level, just like Intel. (Oh, OK, the Remote Elevation of Privilege bug (SA-00075) is known, but the rest aren't - yet.)
Erik _______________________________________________ luv-main mailing list luv-main@luv.asn.au https://lists.luv.asn.au/cgi-bin/mailman/listinfo/luv-main
-- Dr Paul van den Bergen