fix: variant4: added case where prctl ssbd status is tagged as 'unknown'

This commit is contained in:
Stéphane Lesimple 2020-06-06 17:39:07 +02:00
parent 0ea21d09bd
commit 23564cda5d
1 changed files with 5 additions and 0 deletions

View File

@ -4446,6 +4446,11 @@ check_CVE_2018_3639_linux()
elif grep -Eq 'Speculation.?Store.?Bypass:[[:space:]]+not vulnerable' "$procfs/self/status" 2>/dev/null; then elif grep -Eq 'Speculation.?Store.?Bypass:[[:space:]]+not vulnerable' "$procfs/self/status" 2>/dev/null; then
kernel_ssbd_enabled=-2 kernel_ssbd_enabled=-2
pstatus blue NO "not vulnerable" pstatus blue NO "not vulnerable"
elif grep -Eq 'Speculation.?Store.?Bypass:[[:space:]]+unknown' "$procfs/self/status" 2>/dev/null; then
kernel_ssbd_enabled=0
pstatus blue NO
else
pstatus blue UNKNOWN "unknown value: $(grep -E 'Speculation.?Store.?Bypass:' "$procfs/self/status" 2>/dev/null | cut -d: -f2-)"
fi fi
if [ "$kernel_ssbd_enabled" = 1 ]; then if [ "$kernel_ssbd_enabled" = 1 ]; then