Updates on speculative information disclosure
The following distributions have released updates that are pertinent to HVM VPSs and have been verified to work:
- CentOS 6
- CentOS 7
- Debian 9 Stretch 64-bit - 4.9.65-3+deb9u2
For PV VPSs:
- CentOS 6 64-bit 2.6.32-696.18.7.el6.x86_64 does not work for unknown reasons. Modify “default” in /boot/grub/menu.lst to avoid this kernel.
- Debian 9 Stretch 4.9.65-3+deb9u2 64-bit boots but will not provide any benefit.
The following distributions report updates, but we have not verified whether they boot successfully:
- Fedora via the latest kernel-4.14.11
The following distributions do not have updates yet as of 2018-01-05 8:30 UTC:
We have not yet updated any of our distribution images.
We will probably need to reboot and/or migrate off host servers to apply a microcode update which helps with variant 2 (part of spectre) as well as a xen update. We don’t have a timeline yet as to when that will happen.