Intel Kernel Vulnerability 2018 (With Links to Other Documented Posts)

[will.mhtz]

As many of you have probably heard, there has been a significant breach in the kernel of Intel CPUs and some AMD processors. What is being done to remedy this, as the vulnerability is a hardware one and only can be band-aided until new hardware is released. According to Intel, it is the "job" of the OS developers to provide this fix. I have very little to no experience with subsystem design, but I felt that someone needed to post something to get the ball rolling.

Thank you,
Will

 

[Nick2253]

https://forums.freenas.org/index.ph...of-privilege-vulnerability.60420/#post-428839
https://forums.freenas.org/index.php?threads/any-eta-for-implementing-a-fix-for-meltdown.60377/
https://forums.freenas.org/index.php?threads/intel-is-well-and-thoroughly-screwed.60331/

 

[will.mhtz]

https://forums.freenas.org/index.ph...of-privilege-vulnerability.60420/#post-428839
https://forums.freenas.org/index.php?threads/any-eta-for-implementing-a-fix-for-meltdown.60377/
https://forums.freenas.org/index.php?threads/intel-is-well-and-thoroughly-screwed.60331/

Well, all three of those posts I did not even think to find in those sub-forums. As it is such a public issue now, I would think it would have been easier to find.
Thank you for your help!

Will

 

[Nick2253]

The big take away here, as far as FreeNAS goes, is that in theory untrusted code should not be running on your NAS (though perhaps in your jails), so the likelihood of exposure is low. Furthermore, patching this will be dependent on FreeBSD, so there's little that the FreeNAS team can do until FreeBSD has pushed out patches. I suspect that we'll see updates soon.

 

[Ericloewe]

This really does not need another thread.