Mailinglist Archive: opensuse-virtual (17 mails)

< Previous Next >
Re: [opensuse-virtual] How to correctly configure mitigation of CVE-2018-3646 'Foreshadow-NG (VMM)' on Xen Dom0 host?
On Mon, 2019-04-15 at 10:12 -0700, Tony Su wrote:
Have a Q.
Found the following artic which although is for a different CVS
vulnerability more generally describes ways to read proc settings
directly to verify mitigations installed

Was wondering whether there is an article similar to the one
referenced by "@PGnet Dev" that's a good jumping off point for other
virtualization, specifically KVM?

I'm not sure I have understood what you are after.

Each one of these things being --although all somewhat related--
different vulnerabilities, came out at different times, each has its
own piece of documentation (or, often, more than one!).

L1TF is the one which, it can be stated, is the most related to
virtualization, and SUSE docs for it is here (not sure this was liked

The most authoritative source of info for KVM would be, IMO, the kernel

For Xen, I personally think the XSA is particularly well done:

But again, I'm not sure it was things like these you were actually
looking for...

Dario Faggioli, Ph.D
Virtualization Software Engineer
<<This happens because _I_ choose it to happen!>> (Raistlin Majere)

< Previous Next >
List Navigation
Follow Ups