[ https://ovirt-jira.atlassian.net/browse/OVIRT-2045?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Evgheni Dereveanchin reassigned OVIRT-2045:

Assignee: Evgheni Dereveanchin  (was: infra)

patch infra against CVE-2018-3639

     Key: OVIRT-2045
     URL: https://ovirt-jira.atlassian.net/browse/OVIRT-2045
 Project: oVirt - virtualization made easy
         Issue Type: Bug
Reporter: Evgheni Dereveanchin
Assignee: Evgheni Dereveanchin

A new security vulnerability was announced yesterday which is similar to Spectre and needs kernel/BIOS/microcode patching. From the errata page it looks like the RHEL kernel versions with the fix are: RHEL-7 [kernel-3.10.0-862.3.2.el7|https://access.redhat.com/errata/RHSA-2018:1629] RHEL-6 [kernel-2.6.32-696.30.1.el6|https://access.redhat.com/errata/RHSA-2018:1651] Need to wait till this becomes available in CentOS and confirm the fixed versions for Fedora. More info on the vulnerability: https://access.redhat.com/security/vulnerabilities/ssbd

— This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100085)