-
I've been exploring this problem at https://answers.launchpad.net/ubuntu/+source/intel-microcode/+question/681827. It doesn't seem to be a problem on the Ubuntu side. Is this being falsely flagged?
-
## CVE-2019-19338 - Medium Severity Vulnerability
Vulnerable Library - linuxv4.19
Linux kernel source tree
Library home page: https://github.com/torvalds/linux.git
Found in HEAD commit: d80c4f847c9…
-
Shows CPU as vulnerable even though sysfs reports it's mitigated in microcode:
```
$ cat /sys/devices/system/cpu/vulnerabilities/srbds
Mitigation: Microcode
```
```
CVE-2020-0543 aka 'Speci…
-
While looking into #964, @spiffcs [discovered](https://github.com/anchore/grype/issues/964#issuecomment-1289285954) that when Grype started using Alpine's secdb data for edge, Grype began surfacing ad…
-
The custom workstation update process described in freedomofpress/securedrop-workstation#24 has now been largely superseded by the `qubes-gui-updater` tool in dom0. See screenshot:
![qubes-gui-upda…
-
Tested on Linux 6.9-rc1 and 6.9-rc2, the script reports being vulnerable to CVE-2017-5715 despite having retpoline enabled in the kernel:
```
CVE-2017-5715 aka 'Spectre Variant 2, branch target in…
-
# What did you do? (required. The issue will be **closed** when not provided.)
I tried to scan a windows 2019 server from a vuls server installed on Red Hat Entreprise Linux 8
# What did you expe…
-
## Checklist
* [x] Source tarball saved internally ([instructions](https://wiki.freedom.press/wiki/Responding_to_source_requests_for_SecureDrop_kernels#How_to_upload_SecureDrop_kernel_tarballs))
* […
-
[How to file a helpful issue](https://www.qubes-os.org/doc/issue-tracking/)
### Qubes OS release
4.1
### Brief summary
Qubes dom0 whether its 4.1 , 4.0.. were always vulnerable to so…
-
Being done in coordination with freedomofpress/securedrop#6938.
## Checklist
* [x] Source tarball saved internally ([instructions](https://wiki.freedom.press/wiki/Responding_to_source_requests_for…
cfm updated
11 months ago