Kernel 4.14.15: Vulnerabilities Specter and Meltdown also affect Linux systems. Distribution development teams are reportedly preparing up-to-date kernels, and everyone should update their browsers as well.
Previously publication we mentioned for a script which can test whether your Linux distribution is vulnerable to Specter 1 and 2 vulnerabilities or Meltdown attacks.
The script checks each variation separately and displays the results. If it shows “STATUS: VULNERABLE” the system is vulnerable and needs an immediate (and if available) Kernel upgrade.
As you can see in the above image, with an older kernel, one of the systems I use remains vulnerable to the Specter and Meltdown security holes, at least 2 from 3 Variants.
Let's see the same test in the kernel 4.14.15
The new kernel 4.14.15 fixes 2 of the 3 Variants of Specter and Meltdown vulnerabilities. For those of you who use Linux, look in your distribution updates for the most recent updated kernel, and upgrade immediately.
It remains to be seen when the Spectre Variant 1 will be closed, the only one left. But let's not forget her statement by Werner Haas, fromperson της Cyberus Technology και μέλος μιας από τις τρεις ανεξάρτητες ομάδες που ανακάλυψαν και ανέφεραν το Meltdown. Ο ειδικός ανέφερε ότι η επίτευξη μιας συνολικής προστασίας έναντι του Specter είναι πολύ απλή και πιθανόν να συνεπάγεται με μια “συνεχιζόμενη διαδικασία” με διορθώσεις στο software και τροποποιήσεις στο hardware.
"The [Specter] attack scenario is not so simple, as it is very likely that there will be cross-application "without even the involvement of the OS," said Haas.
"Therefore, a general solution like Meltdown seems unlikely. Therefore, I expect combined repairs to hardware / software defects along with the warning that the fight against Spectre will be an ongoing process. "