Linux 6.5 Patches Merged For Intel GDS/DOWNFALL, AMD INCEPTION

Written by Michael Larabel in Linux Security on 8 August 2023 at 01:00 PM EDT. 2 Comments
LINUX SECURITY
There used to be a time when Patch Tuesday wasn't so busy in the Linux space, but certainly not this month... Linus Torvalds just pushed the kernel code changes around AMD INCEPTION and Intel DOWNFALL as well as other security patches.

This merge adds the kernel-side bits around mitigating AMD's Speculative Return Address Stack (RAS) overflow vulnerability for Zen 3 and Zen 4. See this earlier article for details on this AMD INCEPTION disclosure.
"Add a mitigation for the speculative RAS (Return Address Stack) overflow vulnerability on AMD processors.

In short, this is yet another issue where userspace poisons a microarchitectural structure which can then be used to leak privileged information through a side channel"

Linus also merged the kernel changes around Intel Gather Data Sampling (GDS) / DOWNFALL. See the Intel DOWNFALL vulnerability overview for details on that issue affecting Skylake through Ice Lake / Tigerlake processors.

Both the separate AMD and Intel processors need microcode updates that should be pushed out any minute.

Benchmarks happening.

As part of Patch Tuesday was also a Xen security fix for the kernel.

These security patches are now in Linux Git for the Linux 6.5 kernel while they should also be back-ported to the Linux stable series over the next few days.
2 Comments
Related News
Linux BHI Mitigation Being Tweaked Following 12% Database Performance Hit
Linux 6.9-rc4 To Bring New Fixes For x86 Speculation Mitigations
Linux Kernel Patched For Branch History Injection "BHI" Intel CPU Vulnerability
GitHub Disables The XZ Repository Following Today's Malicious Disclosure
XZ Struck By Malicious Code That Could Allow Unauthorized Remote System Access
Linux 6.9 Sees Further Security Hardening
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Fedora Linux 40 Available For Download As A Wonderful Upgrade
AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"
GNU Portability Library's Tool Rewritten In Python For 8~100x Better Performance
Godot's Vulkan Backend Seeing Better Performance, 10~20% Reduction In Frame Times
Systemd 256-rc1 Brings A Huge Number Of New Features
GNOME Working To Make Key Rack A Viable Password Manager, Better Printing For Flatpaks