On 01/07/2018 07:47 PM, Boyan Penkov wrote: > and a backport (4.14.0-bpo2) -- in light of meltdown --
To avoid a false sense of security: according to [1], [2], [3], the current stretch-bpo kernel (linux-image-4.14.0-0.bpo.2-$arch) does *NOT* yet include any mitigations against meltdown. Daniel [1] https://security-tracker.debian.org/tracker/CVE-2017-5753 [2] https://security-tracker.debian.org/tracker/CVE-2017-5754 [3] https://security-tracker.debian.org/tracker/CVE-2017-5715
signature.asc
Description: OpenPGP digital signature