<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=koi8-r">
<style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} --></style>
</head>
<body dir="ltr">
<div id="divtagdefaultwrapper" style="font-size:12pt;color:#000000;font-family:Calibri,Helvetica,sans-serif;" dir="ltr">
<p style="margin-top:0;margin-bottom:0">Hi,</p>
<p style="margin-top:0;margin-bottom:0"><br>
</p>
<p style="margin-top:0;margin-bottom:0">Virtuozzo will release the kernel with fix asap. </p>
<p style="margin-top:0;margin-bottom:0">We have it under testing right now</p>
<p style="margin-top:0;margin-bottom:0"><br>
</p>
<p style="margin-top:0;margin-bottom:0">Thank you,</p>
<p style="margin-top:0;margin-bottom:0">Alex</p>
</div>
<hr style="display:inline-block;width:98%" tabindex="-1">
<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" style="font-size:11pt" color="#000000"><b>From:</b> users-bounces@openvz.org <users-bounces@openvz.org> on behalf of Hristo Benev <foxb@abv.bg><br>
<b>Sent:</b> Wednesday, January 3, 2018 6:39:10 PM<br>
<b>To:</b> zoobab@gmail.com; OpenVZ users<br>
<b>Subject:</b> Re: [Users] X86_BUG_CPU_INSECURE</font>
<div> </div>
</div>
<div class="BodyFragment"><font size="2"><span style="font-size:11pt;">
<div class="PlainText">>-------- Оригинално писмо -------- <br>
>От: Benjamin Henrion zoobab@gmail.com <br>
>Относно: [Users] X86_BUG_CPU_INSECURE <br>
>До: "OpenVZ users list. This is THE list you need." <users@openvz.org> <br>
>Изпратено на: 03.01.2018 03:02 <br>
<br>
<br>
> Hi, <br>
> <br>
> Just reading this: <br>
> <br>
> <a href="https://amp.reddit.com/r/sysadmin/comments/7nl8r0/intel_bug_incoming/">
https://amp.reddit.com/r/sysadmin/comments/7nl8r0/intel_bug_incoming/</a> <br>
> <br>
> Xen seems to have a pending patch to be release this week, but people <br>
> are speculating now that you could bypass the entire isolation process <br>
> provided by any hypervisor. <br>
> <br>
> Wait and see how this will be exploited, but you can be sure there <br>
> will be exploits soon in the wild. <br>
> <br>
> The patch for software mitigation seems to be big and performance impacting. <br>
> <br>
> But that would probably mean that containers can be bypassed. <br>
> <br>
> Wait and see, <br>
> <br>
> -- <br>
> Benjamin Henrion (zoobab) <br>
> Email: zoobab at gmail.com <br>
> Mobile: +32-484-566109 <br>
> Web: <a href="http://www.zoobab.com">http://www.zoobab.com</a> <br>
> FFII.org Brussels <br>
> "In July 2005, after several failed attempts to legalise software <br>
> patents in Europe, the patent establishment changed its strategy. <br>
> Instead of explicitly seeking to sanction the patentability of <br>
> software, they are now seeking to create a central European patent <br>
> court, which would establish and enforce patentability rules in their <br>
> favor, without any possibility of correction by competing courts or <br>
> democratically elected legislators." <br>
> _______________________________________________ <br>
> Users mailing list <br>
> Users@openvz.org <br>
> <a href="https://lists.openvz.org/mailman/listinfo/users">https://lists.openvz.org/mailman/listinfo/users</a><br>
<br>
<br>
<a href="https://spectreattack.com">https://spectreattack.com</a><br>
<br>
States that OpenVZ might be affected.<br>
_______________________________________________<br>
Users mailing list<br>
Users@openvz.org<br>
<a href="https://lists.openvz.org/mailman/listinfo/users">https://lists.openvz.org/mailman/listinfo/users</a><br>
</div>
</span></font></div>
</body>
</html>