Note that we are mostly ignoring non-x86 arches for Meltdown and Spectre

3 files changed, 3 insertions, 0 deletions

diff --git a/active/CVE-2017-5715 b/active/CVE-2017-5715
index 436bbfcd..d342c839 100644
--- a/active/CVE-2017-5715
+++ b/active/CVE-2017-5715
@@ -18,6 +18,7 @@ Notes:
  carnil> with retpoline support.
  carnil> 4.9.82-1+deb9u1 upload enforces a dependency on the used
  carnil> compiler with retpoline support.
+ bwh> The status below is for x86 only.
  bwh> 3.2.101 and 3.16.56 stable branches have retpoline support, but
  bwh> microcode support is TBD.
 Bugs:
diff --git a/active/CVE-2017-5753 b/active/CVE-2017-5753
index e9b98f2f..6997a14f 100644
--- a/active/CVE-2017-5753
+++ b/active/CVE-2017-5753
@@ -6,6 +6,7 @@ Notes:
  carnil> "kvm: vmx: Scrub hardware GPRs at VM-exit" in 4.15-rc7
  carnil> Further work went in in 4.16-rc1, 4.15.2 and 4.9.81 and following
  carnil> for mitigations (Mitigation: __user pointer sanitization).
+ bwh> The status below is for x86 only.
  bwh> Same mitigations are included in 3.2.101 and 3.16.56.
 Bugs:
 upstream: needed
diff --git a/retired/CVE-2017-5754 b/retired/CVE-2017-5754
index 44dd0fbc..1104e428 100644
--- a/retired/CVE-2017-5754
+++ b/retired/CVE-2017-5754
@@ -2,6 +2,7 @@ Description: rogue data cache load
 References:
  https://meltdownattack.com/
 Notes:
+ bwh> The status below is for x86 only.
 Bugs:
 upstream: released (4.15-rc6)
 4.9-upstream-stable: released (4.9.75)