NB: this post does not relate to Debian, apologies.
stevepusser wrote:I thought that only the most recent kernels are going to show that vulnerabilities folder in /sys. Currently, no 32-bit kernels have any mitigation for Meltdown, AFAIK, as has been stated in several threads here and confirmed by a kernel developer. There is some work being done towards fixing that sad situation.
Ah, that would explain why I got this:
Code: Select all
bash-4.3# gawk '{ print FILENAME ":\t" $0 }' /sys/devices/system/cpu/vulnerabilities/*
/sys/devices/system/cpu/vulnerabilities/meltdown: Vulnerable
/sys/devices/system/cpu/vulnerabilities/spectre_v1: Vulnerable
/sys/devices/system/cpu/vulnerabilities/spectre_v2: Mitigation: Full generic retpoline
Thanks for clearing that up, Steve. Furthermore, the point that I was making re my CPU was that it is apparently immune to both vulnerabilties [N270]. But kernel-wise, yes, it seems we are not yet there with the mitigation for 32bit [though complete mitigation has been achieved now in 64bit {Slack} - sorry for taking this off-distro].
Resume normal service, I will bow out.