Libvirt Security Notice: LSN-2018-0001 ====================================== Summary: Spectre variant 2 branch target injection Reported on: 20171212 Published on: 20180105 Fixed on: 20180118 Reported by: Paolo Bonzini Patched by: Paolo Bonzini , Jiri Denemark See also: CVE-2017-5715 Description ----------- This is not a vulnerability in libvirt, rather it is a set of changes in libvirt to enable mitigation of the Spectre hardware flaws by providing extra CPU models with the "spec-ctrl" feature . Refer to https://spectreattack.com/ for further background information. Affected product ---------------- Name: libvirt Repository: https://gitlab.com/libvirt/libvirt Branch: master Broken in: v0.2.0 Broken in: v0.2.1 Broken in: v0.2.2 Broken in: v0.2.3 Broken in: v0.3.0 Broken in: v0.3.1 Broken in: v0.3.2 Broken in: v0.3.3 Broken in: v0.4.1 Broken in: v0.4.2 Broken in: v0.4.4 Broken in: v0.4.6 Broken in: v0.5.0 Broken in: v0.5.1 Broken in: v0.6.0 Broken in: v0.6.1 Broken in: v0.6.2 Broken in: v0.6.3 Broken in: v0.6.4 Broken in: v0.6.5 Broken in: v0.7.0 Broken in: v0.7.1 Broken in: v0.7.2 Broken in: v0.7.3 Broken in: v0.7.4 Broken in: v0.7.5 Broken in: v0.7.6 Broken in: v0.7.7 Broken in: v0.8.0 Broken in: v0.8.1 Broken in: v0.8.2 Broken in: v0.8.3 Broken in: v0.8.4 Broken in: v0.8.5 Broken in: v0.8.6 Broken in: v0.8.7 Broken in: v0.8.8 Broken in: v0.9.0 Broken in: v0.9.1 Broken in: v0.9.2 Broken in: v0.9.3 Broken in: v0.9.4 Broken in: v0.9.5 Broken in: v0.9.6 Broken in: v0.9.7 Broken in: v0.9.8 Broken in: v0.9.9 Broken in: v0.9.10 Broken in: v0.9.11 Broken in: v0.9.12 Broken in: v0.9.13 Broken in: v0.10.0 Broken in: v0.10.1 Broken in: v0.10.2 Broken in: v1.0.0 Broken in: v1.0.1 Broken in: v1.0.2 Broken in: v1.0.3 Broken in: v1.0.4 Broken in: v1.0.5 Broken in: v1.0.6 Broken in: v1.1.0 Broken in: v1.1.1 Broken in: v1.1.2 Broken in: v1.1.3 Broken in: v1.1.4 Broken in: v1.2.0 Broken in: v1.2.1 Broken in: v1.2.2 Broken in: v1.2.3 Broken in: v1.2.4 Broken in: v1.2.5 Broken in: v1.2.6 Broken in: v1.2.7 Broken in: v1.2.8 Broken in: v1.2.9 Broken in: v1.2.10 Broken in: v1.2.11 Broken in: v1.2.12 Broken in: v1.2.13 Broken in: v1.2.14 Broken in: v1.2.15 Broken in: v1.2.16 Broken in: v1.2.17 Broken in: v1.2.18 Broken in: v1.2.19 Broken in: v1.2.20 Broken in: v1.2.21 Broken in: v1.3.0 Broken in: v1.3.1 Broken in: v1.3.2 Broken in: v1.3.3 Broken in: v1.3.4 Broken in: v1.3.5 Broken in: v2.0.0 Broken in: v2.1.0 Broken in: v2.2.0 Broken in: v2.3.0 Broken in: v2.4.0 Broken in: v2.5.0 Broken in: v3.0.0 Broken in: v3.1.0 Broken in: v3.2.0 Broken in: v3.3.0 Broken in: v3.4.0 Broken in: v3.5.0 Broken in: v3.6.0 Broken in: v3.7.0 Broken in: v3.8.0 Broken in: v3.9.0 Broken in: v3.10.0 Fixed in: v4.0.0 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Fixed by: 24d504396c3c05eff87d29173a224e2faaeb2637 Fixed by: b2042020c32b74069fa5365b5e966537aaba8cf6 Fixed by: 7bb4ce9761dfbd1620ddffb26fbd6f0ff1fedf3f Fixed by: 49bffcb3cc1850d332b9648c686a7be18de9e708 Fixed by: 7f83eefa9e6940c83579d31941efd07fab1b90c8 Fixed by: 7dd85ff62d7080b52d4d175f53ad5eb11cdcfb9c Fixed by: 203c92e9cc2db854199b39ef3ffcc10406d3c59e Fixed by: 30b381cfdd5e92e5afa6de09f0fe533353e71d07 Fixed by: 2e3b220a874e558e54678afd7cf49466fe605e09 Fixed by: 6b7e7d1cc24a28a9f5ece8626f807189647d14b4 Fixed by: 6d4a3cd42781babed7d29b061e220ebff24dd43e Branch: v0.8.3-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v0.9.6-maint Broken in: v0.9.6.1 Broken in: v0.9.6.2 Broken in: v0.9.6.3 Broken in: v0.9.6.4 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v0.9.11-maint Broken in: v0.9.11.1 Broken in: v0.9.11.2 Broken in: v0.9.11.3 Broken in: v0.9.11.4 Broken in: v0.9.11.5 Broken in: v0.9.11.6 Broken in: v0.9.11.7 Broken in: v0.9.11.8 Broken in: v0.9.11.9 Broken in: v0.9.11.10 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v0.9.12-maint Broken in: v0.9.12.1 Broken in: v0.9.12.2 Broken in: v0.9.12.3 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v0.10.2-maint Broken in: v0.10.2.1 Broken in: v0.10.2.2 Broken in: v0.10.2.3 Broken in: v0.10.2.4 Broken in: v0.10.2.5 Broken in: v0.10.2.6 Broken in: v0.10.2.7 Broken in: v0.10.2.8 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.0-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.1-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.2-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.3-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.4-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.5-maint Broken in: v1.0.5.1 Broken in: v1.0.5.2 Broken in: v1.0.5.3 Broken in: v1.0.5.4 Broken in: v1.0.5.5 Broken in: v1.0.5.6 Broken in: v1.0.5.7 Broken in: v1.0.5.8 Broken in: v1.0.5.9 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.0.6-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.1.0-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.1.1-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.1.2-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.1.3-maint Broken in: v1.1.3.1 Broken in: v1.1.3.2 Broken in: v1.1.3.3 Broken in: v1.1.3.4 Broken in: v1.1.3.5 Broken in: v1.1.3.6 Broken in: v1.1.3.7 Broken in: v1.1.3.8 Broken in: v1.1.3.9 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.1.4-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.0-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.1-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.2-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.3-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.4-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.5-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.6-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.7-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.8-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.9-maint Broken in: v1.2.9.1 Broken in: v1.2.9.2 Broken in: v1.2.9.3 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.10-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.11-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.12-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.13-maint Broken in: v1.2.13.1 Broken in: v1.2.13.2 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.14-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.15-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.16-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.17-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.18-maint Broken in: v1.2.18.1 Broken in: v1.2.18.2 Broken in: v1.2.18.3 Broken in: v1.2.18.4 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.19-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.20-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.2.21-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.3.0-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.3.1-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.3.2-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.3.3-maint Broken in: v1.3.3.1 Broken in: v1.3.3.2 Broken in: v1.3.3.3 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.3.4-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v1.3.5-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v2.0-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v2.1-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v2.2-maint Broken in: v2.2.1 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v3.0-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v3.2-maint Broken in: v3.2.1 Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948 Branch: v3.7-maint Broken by: 23ad665cb05ef9ce7d298cc34bff5efb95ef6948