Utility for mitigations CVE-2017-5715 and CVE-2017-5754 status check

Discussion in 'Operating Systems' started by mbk1969, Jan 10, 2018.

  1. Chrysalis

    Chrysalis Master Guru

    Messages:
    237
    Likes Received:
    27
    GPU:
    RTX 3080 FE
    It is skylake and newer.
     
  2. mbk1969

    mbk1969 Ancient Guru

    Messages:
    11,285
    Likes Received:
    8,856
    GPU:
    GF RTX 2070 Super
    As I take some some CPUs do not need retpoline:
    https://software.intel.com/security...line-A-Branch-Target-Injection-Mitigation.pdf
    (About enhanced IBRS - https://software.intel.com/content/...lative-execution-side-channel-mitigations.pdf)

    ***

    As for your question about PowerShell module and this tool, you see these two lines in PowerShell:
    Code:
    BTIKernelRetpolineEnabled           : False
    BTIKernelImportOptimizationEnabled  : True
    
    and you see these two lines in tool:
    Code:
    Windows OS support for kernel retpoline is enabled: False
    Windows OS support for kernel import optimization is enabled: True
    
     
    Last edited: Apr 19, 2021
  3. Astyanax

    Astyanax Ancient Guru

    Messages:
    11,616
    Likes Received:
    4,383
    GPU:
    GTX 1080ti
    Retpoline and Import optimization is supported up to Broadwell, but PCID optimizatin is not.
    Import and PCID optimization is supported on skylake but retpoline is not.
     
  4. tsunami231

    tsunami231 Ancient Guru

    Messages:
    12,180
    Likes Received:
    940
    GPU:
    EVGA 1070Ti Black
    I did not know that, guess I was reading that wrong.

    As for the 2 listed there i didnt know they were same just worded diffrently, what about all the other stuff under stuff in the power shell? i dont see entires for all them in your tool?

    This just curiosity at point I all but stopped paying attention to all his.
     

  5. tsunami231

    tsunami231 Ancient Guru

    Messages:
    12,180
    Likes Received:
    940
    GPU:
    EVGA 1070Ti Black
    This what happens when they use word i didnt undestand o_O I had to look up "subsequent" dont remeber which article I was reading that in that used that instead of "newer"
     
  6. mbk1969

    mbk1969 Ancient Guru

    Messages:
    11,285
    Likes Received:
    8,856
    GPU:
    GF RTX 2070 Super
    Other stuff in PowerShell just duplicates the text above:
    - lines with "BTI" prefix are about "branch target injection" section;
    - lines with "KVA" prefix are about "rogue data cache load" (kernel VA) section;
    - lines with "SSBD" are about "speculative store bypass" section;
    - lines with "L1TF" are about "L1 terminal fault" section;
    - lines with "MDS" prefix are about "microarchitectural data sampling" section.
    You can easily find their fuller presentation in according section (except for two lines you asked about).
     

Share This Page