Bug ID 1201351
Summary MMIO Stale Data CPU bug present and SMT on, data leak possible
Classification openSUSE
Product openSUSE Tumbleweed
Version Current
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee security-team@suse.de
Reporter ada.lovelace@gmx.de
QA Contact qa-bugs@suse.de
Found By ---
Blocker --- 

User-Agent:       Mozilla/5.0 (X11; Linux x86_64; rv:101.0) Gecko/20100101
Firefox/101.0
Build Identifier: 

I have updated openSUSE Tumbleweed (incl. firmware) today on my Lenovo Thinkpad
T14.

Then I wanted to check, whether all is fine again (after a former bug). The
dmesg output is saying the following today:

[    0.116366] smp: Bringing up secondary CPUs ...
[    0.116366] x86: Booting SMP configuration:
[    0.116366] .... node  #0, CPUs:      #1 #2 #3 #4
[    0.117480] MMIO Stale Data CPU bug present and SMT on, data leak possible.
See
https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/processor_mmio_stale_data.html
for more details.
[    0.117480]  #5 #6 #7
[    0.121058] smp: Brought up 1 node, 8 CPUs

It seems, that data leaks are possible at the moment.


Reproducible: Always

Steps to Reproduce:
1. Hardware: Lenovo ThinkPad T14 Gen 1 with Intel������ Core��������� i7-10510U ������ 8
2. Latest firmware updates and update of openSUSE Tumbleweed
3. dmesg output is referencing data leak
Actual Results:  
data leak is possible

Expected Results:  
No security issues

You are receiving this mail because: