L1TF Vulnerable

Bug #1791126 reported by alex
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
New
Undecided
Unassigned

Bug Description

My xenial system with intel-microcode 3.20180807a.0ubuntu0.16.04.1 and linux-image-4.4.0-134-generic 4.4.0-134.160, with an Intel(R) Xeon(R) CPU E3-1220 V2 @ 3.10GHz, and "cat /sys/devices/system/cpu/vulnerabilities/l1tf" still reports "Vulnerable".

ProblemType: Bug
DistroRelease: Ubuntu 16.04
Package: linux-image-4.4.0-134-generic 4.4.0-134.160
ProcVersionSignature: Ubuntu 4.4.0-134.160-generic 4.4.140
Uname: Linux 4.4.0-134-generic x86_64
AlsaDevices:
 total 0
 crw-rw---- 1 root audio 116, 1 Sep 6 15:11 seq
 crw-rw---- 1 root audio 116, 33 Sep 6 15:11 timer
AplayDevices: Error: [Errno 2] No such file or directory: 'aplay'
ApportVersion: 2.20.1-0ubuntu2.18
Architecture: amd64
ArecordDevices: Error: [Errno 2] No such file or directory: 'arecord'
AudioDevicesInUse: Error: [Errno 2] No such file or directory: 'fuser'
Date: Thu Sep 6 18:01:09 2018
IwConfig: Error: [Errno 2] No such file or directory: 'iwconfig'
Lspci: Error: [Errno 2] No such file or directory: 'lspci'
Lsusb: Error: [Errno 2] No such file or directory: 'lsusb'
MachineType: Dell Inc. PowerEdge R210 II
PciMultimedia:

ProcEnviron:
 LC_CTYPE=UTF-8
 TERM=xterm-256color
 PATH=(custom, no user)
 SHELL=/bin/bash
ProcFB:

ProcKernelCmdLine: BOOT_IMAGE=images/mutu/pxe_xenial_docker_web_multi/releases/vmlinuz-current-generic initrd=images/mutu/pxe_xenial_docker_web_multi/releases/initrd.img-current-generic netboot=nonempty boot=live nouser fetch=http://10.41.2.6/images/mutu/pxe_xenial_docker_web_multi/releases/filesystem-current-generic.squashfs ethdevice-timeout=180 flex_pxelinux_hostname=pf42 noplymouth text nosplash flex_base_url=http://10.41.2.6/images/mutu/pxe_xenial_docker_web_multi/ ip=10.41.2.199:10.41.2.6:10.41.2.70:255.255.255.0 BOOTIF=01-d4-ae-52-ce-97-6a
RelatedPackageVersions:
 linux-restricted-modules-4.4.0-134-generic N/A
 linux-backports-modules-4.4.0-134-generic N/A
 linux-firmware 1.157.20
RfKill: Error: [Errno 2] No such file or directory: 'rfkill'
SourcePackage: linux
UpgradeStatus: No upgrade log present (probably fresh install)
dmi.bios.date: 09/13/2013
dmi.bios.vendor: Dell Inc.
dmi.bios.version: 2.6.1
dmi.board.name: 03X6X0
dmi.board.vendor: Dell Inc.
dmi.board.version: A06
dmi.chassis.type: 23
dmi.chassis.vendor: Dell Inc.
dmi.modalias: dmi:bvnDellInc.:bvr2.6.1:bd09/13/2013:svnDellInc.:pnPowerEdgeR210II:pvr:rvnDellInc.:rn03X6X0:rvrA06:cvnDellInc.:ct23:cvr:
dmi.product.name: PowerEdge R210 II
dmi.sys.vendor: Dell Inc.

Revision history for this message
alex (amottier) wrote :
Revision history for this message
alex (amottier) wrote :

$ cat /proc/version
Linux version 4.4.0-134-generic (buildd@lgw01-amd64-033) (gcc version 5.4.0 20160609 (Ubuntu 5.4.0-6ubuntu1~16.04.10) ) #160-Ubuntu SMP Wed Aug 15 14:58:00 UTC 2018

I also tried on the same system with Bionic, kernel 4.15, still L1TF vulnerable.

Revision history for this message
Steve Beattie (sbeattie) wrote :

From your dmesg:

  L1TF: System has more than MAX_PA/2 memory. L1TF mitigation not effective.

Marking this as a duplicate of LP: #1788563 . Please add any additional comments there, thanks.

information type: Private Security → Public Security
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.