peter/spectre-meltdown-checker
1
0
Fork 0
mirror of https://github.com/speed47/spectre-meltdown-checker.git synced 2026-04-17 06:03:19 +02:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 7e5eee74ac fix: remove useless checks under ARM for CVE-2023-28746 test-build github-actions[bot] 2026-04-10 17:51:49 +00:00
  • 48454a5344 fix: remove useless checks under ARM for CVE-2023-28746 test Stéphane Lesimple 2026-04-10 19:50:15 +02:00
  • 9bef6ec533 enh: use g_mode to explicitly save/load the current running mode github-actions[bot] 2026-04-10 17:29:38 +00:00
  • e67c9e4265 enh: use g_mode to explicitly save/load the current running mode Stéphane Lesimple 2026-04-10 19:26:46 +02:00
  • f7ba617e16 enh: guard x86/arm specific checks in kernel/cpu for the proper arch Stéphane Lesimple 2026-04-10 18:37:32 +02:00
  • f587d9355e enh: guard x86/arm specific checks in kernel/cpu for the proper arch github-actions[bot] 2026-04-10 16:40:49 +00:00
  • e110706df8 enh: factorize is_arch_kernel Stéphane Lesimple 2026-04-10 18:37:14 +02:00
  • 83be8fd544 chore: fix build workflow github-actions[bot] 2026-04-08 21:02:02 +00:00
  • de853fc801 chore: fix build workflow Stéphane Lesimple 2026-04-08 23:00:40 +02:00
  • 98ec067aef enh: rework json/prom output to better split x86/arm Stéphane Lesimple 2026-04-08 22:27:30 +02:00
  • ff42393fa6 new batch mode docs, add doc/ to -build branch Stéphane Lesimple 2026-04-08 21:57:03 +02:00
  • f0fb59310e fix: add a missing pstatus to CVE-2023-20588 check Stéphane Lesimple 2026-04-08 21:42:19 +02:00
  • be0f2d20d2 fix: remove misleading explain on correctly mitigated SLS Stéphane Lesimple 2026-04-08 21:41:55 +02:00
  • 3639de9e8a chore: fix github workflow check with new --batch output Stéphane Lesimple 2026-04-08 21:41:24 +02:00
  • df3c2aeaa3 add screenshot to README Stéphane Lesimple 2026-04-08 21:32:16 +02:00
  • 945f70bb63 fix: early abort when using --allow-msr-write Stéphane Lesimple 2026-04-08 21:11:12 +02:00
  • db84fc10de chore: make fmt Stéphane Lesimple 2026-04-08 21:03:57 +02:00
  • 60ea669e41 enh: better explain the 4 run modes Stéphane Lesimple 2026-04-08 20:53:50 +02:00
  • f1c0d5548c chg: remove --no-intel-db, it's now always used when available Stéphane Lesimple 2026-04-08 20:53:35 +02:00
  • 9e617a4363 remove prometheus-legacy format Stéphane Lesimple 2026-04-08 20:53:19 +02:00
  • b9c203120b enh: --no-runtime and --no-hw modes replacing --live and implicit 'offline' mode Stéphane Lesimple 2026-04-08 20:53:00 +02:00
  • 3f7e0a11f7 enh: CVE-2018-3640 (Spectre 3a): enhance ARM mitigation detection Stéphane Lesimple 2026-04-08 20:52:22 +02:00
  • 5c469787ea enh: rework --batch nrpe entirely Stéphane Lesimple 2026-04-08 20:51:58 +02:00
  • a952fe32c4 fix: exit_cleanup: don't lose passed exit code Stéphane Lesimple 2026-04-08 20:51:36 +02:00
  • 61fa02d577 feat: rework the --batch prometheus output entirely Stéphane Lesimple 2026-04-08 20:51:12 +02:00
  • 39dea1245e feat: rework the --batch json output entirely Stéphane Lesimple 2026-04-08 20:50:54 +02:00
  • 3afbda8430 enh: when reading CPUID is unavailable (VM?), fallback to cpuinfo where applicable Stéphane Lesimple 2026-04-06 18:58:36 +02:00
  • 6d69ce9a77 enh: read/write_msr: clearer error messages Stéphane Lesimple 2026-04-06 18:43:36 +02:00
  • 3ebfba2ac2 fix: CVE-2017-5715 (Spectre V2): Red Hat specific fix for RSB Filling (fixes #235) Stéphane Lesimple 2026-04-06 17:40:59 +02:00
  • a3f6553e65 fix: read/write msr and lockdown: fix a variable error, properly report lockdown to users Stéphane Lesimple 2026-04-06 17:40:25 +02:00
  • 42ed8efa65 fix: better compatibility under busybox, silence buggy unzlma versions (fix #432) Stéphane Lesimple 2026-04-06 17:12:21 +02:00
  • 2c766b7cc6 fix: wrmsr: specify core number (closes #294) Stéphane Lesimple 2026-04-06 17:01:17 +02:00
  • 49472f1b64 enh: clearer kernel info section at the top of the script Stéphane Lesimple 2026-04-06 15:00:00 +02:00
  • 333aa74fea enh: clearer CPU details section Stéphane Lesimple 2026-04-06 14:59:13 +02:00
  • 8d9504d174 chore: add comment about is_intel/amd/hygon recursion Stéphane Lesimple 2026-04-06 13:46:11 +02:00
  • 6043f586ef enh: update IntelDB affected CPU list to 2026-04 data, including Hybrid CPU detection Stéphane Lesimple 2026-04-06 13:43:39 +02:00
  • e1ace7c281 doc: document Platypus (CVE-2020-8694 CVE-2020-8695) as out of scope (#384) Stéphane Lesimple 2026-04-06 13:26:38 +02:00
  • 24ab98d757 doc: document CVE-2020-24511 and CVE-2020-24512 as being out of scope along with rationale (#409) Stéphane Lesimple 2026-04-06 13:07:20 +02:00
  • 155b3808b9 fix: CPUs affected by MSBDS but not MDS (fix #351) Stéphane Lesimple 2026-04-06 12:58:03 +02:00
  • b6a41918b0 doc: add CVE-2019-11157 (Plundervolt) to unsupported CVE list Stéphane Lesimple 2026-04-06 12:38:57 +02:00
  • 3c56ac35dd fix: better detect kernel lockdown & no longer require cap_flush_cmd to deem CVE-2018-3615 as mitigated (fix #296) Stéphane Lesimple 2026-04-06 12:29:26 +02:00
  • b0bb1f4676 feat: implement check for MMIO Stale Data (CVE-2022-21123 CVE-2022-21125 CVE-2022-21166) (#437) Stéphane Lesimple 2026-04-06 11:25:51 +02:00
  • 0fa7e44327 doc: add Blindside to unsupported list (#374) Stéphane Lesimple 2026-04-06 10:27:17 +02:00
  • f100b4e1dc doc: add CVE-2020-0549 (L1D Eviction Sampling, CacheOut) as unsupported Stéphane Lesimple 2026-04-06 03:33:32 +02:00
  • 6332fc3405 fix: CVE-2019-11135 (TAA) detect new 0x10F MSR for TSX-disabled CPUs (#414) Stéphane Lesimple 2026-04-06 03:23:56 +02:00
  • 3c61c7489b fix: CVE-2024-3635[0,7] don't print lines about TSA CPUID bits under non-AMD Stéphane Lesimple 2026-04-06 03:09:18 +02:00
  • 3d01978cd4 feat: add CVE-2023-20588 (AMD DIV0 bug) (#473) Stéphane Lesimple 2026-04-06 02:40:09 +02:00
  • 53c45e3363 doc: update dev guidelines Stéphane Lesimple 2026-04-05 23:58:14 +02:00
  • acf8b585a5 doc: add CVE-2024-2201 (Native BHI) and TLBleed as unsupported Stéphane Lesimple 2026-04-06 01:12:34 +02:00
  • 076a1d5723 fix: CVE-2020-0543 (SRBDS): microcode mitigation misdetected (#492) Stéphane Lesimple 2026-04-06 00:58:49 +02:00
  • ee618ead07 enh: detect IPBP return predictor bypass in Inception/SRSO ("PB-Inception") (#500) Stéphane Lesimple 2026-04-06 00:45:09 +02:00
  • 1ff1dfbe26 fix: don't default to 0x0 ucode when unknown Stéphane Lesimple 2026-04-06 00:38:55 +02:00
  • 78e4d25319 fix: bsd: use proper MSR for AMD in ucode version read fallback Stéphane Lesimple 2026-04-06 00:38:39 +02:00
  • 24ed9ccaf6 enh: MDS FreeBSD: detect software mitigation as OK unless --paranoid (#503) Stéphane Lesimple 2026-04-06 00:17:32 +02:00
  • a49234ed96 doc: add CVE-2021-26318 (ADM Prefetch) to unsupported list Stéphane Lesimple 2026-04-05 23:57:53 +02:00
  • 2ed15da028 feat: implement CVE-2023-28746 (RFDS, Register File Data Sampling) Stéphane Lesimple 2026-04-05 23:57:28 +02:00
  • 0fcdc6e6cc feat: add SLS (Straight-Line Speculation) check with --extra option Stéphane Lesimple 2026-04-05 23:54:12 +02:00
  • 9383287fc6 chore: delete FAQ.md from ./ in test-build (moved to doc/ in test) Stéphane Lesimple 2026-04-08 20:18:32 +00:00
  • a2823830a6 chore: create doc/ in -build branch github-actions[bot] 2026-04-08 20:10:38 +00:00
  • 6212de226a enh: when reading CPUID is unavailable (VM?), fallback to cpuinfo where applicable github-actions[bot] 2026-04-06 17:00:15 +00:00
  • f8873048fc enh: read/write_msr: clearer error messages github-actions[bot] 2026-04-06 16:44:52 +00:00
  • 463e33d61c fix: CVE-2017-5715 (Spectre V2): Red Hat specific fix for RSB Filling (fixes #235) github-actions[bot] 2026-04-06 15:42:13 +00:00
  • 4d1af90420 fix: better compatibility under busybox, silence buggy unzlma versions (fix #432) github-actions[bot] 2026-04-06 15:14:01 +00:00
  • e8a3c7d7f5 fix: wrmsr: specify core number (closes #294) github-actions[bot] 2026-04-06 15:02:33 +00:00
  • 8ae598802c enh: clearer kernel info section at the top of the script github-actions[bot] 2026-04-06 13:01:21 +00:00
  • 48a4c0e49c chore: add comment about is_intel/amd/hygon recursion github-actions[bot] 2026-04-06 12:06:52 +00:00
  • 1557bbee42 doc: document Platypus (CVE-2020-8694 CVE-2020-8695) as out of scope (#384) github-actions[bot] 2026-04-06 11:27:56 +00:00
  • 4530f39fae doc: document CVE-2020-24511 and CVE-2020-24512 as being out of scope along with rationale (#409) github-actions[bot] 2026-04-06 11:08:28 +00:00
  • d247733496 fix: CPUs affected by MSBDS but not MDS (fix #351) github-actions[bot] 2026-04-06 10:59:40 +00:00
  • fc66ee567a doc: add CVE-2019-11157 (Plundervolt) to unsupported CVE list github-actions[bot] 2026-04-06 10:40:10 +00:00
  • 072b98cefd fix: better detect kernel lockdown & no longer require cap_flush_cmd to deem CVE-2018-3615 as mitigated (fix #296) github-actions[bot] 2026-04-06 10:30:36 +00:00
  • bceb62f982 feat: implement check for MMIO Stale Data (CVE-2022-21123 CVE-2022-21125 CVE-2022-21166) (#437) github-actions[bot] 2026-04-06 09:31:08 +00:00
  • aacdd35c57 doc: add Blindside to unsupported list (#374) github-actions[bot] 2026-04-06 08:28:38 +00:00
  • c0a389b086 doc: add CVE-2020-0549 (L1D Eviction Sampling, CacheOut) as unsupported github-actions[bot] 2026-04-06 01:34:41 +00:00
  • 726f9e54f5 fix: CVE-2019-11135 (TAA) detect new 0x10F MSR for TSX-disabled CPUs (#414) github-actions[bot] 2026-04-06 01:25:09 +00:00
  • 11210ab772 fix: CVE-2024-3635[0,7] don't print lines about TSA CPUID bits under non-AMD github-actions[bot] 2026-04-06 01:10:32 +00:00
  • 624aef4a46 feat: add CVE-2023-20588 (AMD DIV0 bug) (#473) github-actions[bot] 2026-04-06 00:47:00 +00:00
  • b6a7ee2345 doc: add CVE-2024-2201 (Native BHI) and TLBleed as unsupported github-actions[bot] 2026-04-06 00:25:24 +00:00
  • 5698711b3d fix: CVE-2020-0543 (SRBDS): microcode mitigation misdetected (#492) github-actions[bot] 2026-04-05 23:00:02 +00:00
  • e0f9aeab81 enh: detect IPBP return predictor bypass in Inception/SRSO ("PB-Inception") (#500) github-actions[bot] 2026-04-05 22:47:43 +00:00
  • 2f550ba8cd fix: don't default to 0x0 ucode when unknown github-actions[bot] 2026-04-05 22:40:17 +00:00
  • 3f60773ec4 enh: MDS FreeBSD: detect software mitigation as OK unless --paranoid (#503) github-actions[bot] 2026-04-05 22:18:42 +00:00
  • acaf3b684f doc: update dev guidelines github-actions[bot] 2026-04-05 22:01:40 +00:00
  • 8a6f9d5d63 Implement ITS/VMScape/BTI and misc enhancements (#539) master v26.26.0404682 Stéphane Lesimple 2026-04-04 16:38:49 +00:00
  • 73b67b4a80 Merge branch 'master' into source-build source-build Stéphane Lesimple 2026-04-04 16:25:35 +00:00
  • ea6b8efd18 fix: add rebleet to --variant github-actions[bot] 2026-04-04 16:23:18 +00:00
  • 0ec51090ae fix: add rebleet to --variant github-actions[bot] 2026-04-04 16:22:49 +00:00
  • 7a7408d124 fix: add rebleet to --variant source Stéphane Lesimple 2026-04-04 18:17:35 +02:00
  • e9cb988409 fix: add rebleet to --variant github-actions[bot] 2026-04-04 16:21:37 +00:00
  • c147f3f7d4 retbl github-actions[bot] 2026-04-04 16:19:20 +00:00
  • 24d92540a7 enh: add known fixed ucode versions for CVE-2023-23583 (Reptar) and CVE-2024-45332 (BPI) github-actions[bot] 2026-04-04 16:08:25 +00:00
  • cccb3c0081 enh: add known fixed ucode versions for CVE-2023-23583 (Reptar) and CVE-2024-45332 (BPI) Stéphane Lesimple 2026-04-04 17:50:04 +02:00
  • 090f109c52 doc: add CVE-2023-31315 (SinkClose) to the unsupported list, add categories Stéphane Lesimple 2026-04-04 17:49:38 +02:00
  • 5dc9c3c18d chore: reorder CVE list in README.md Stéphane Lesimple 2026-04-04 16:14:05 +02:00
  • a00fab131f feat: implement CVE-2025-40300 (VMScape) and CVE-2024-45332 (BTI) Stéphane Lesimple 2026-04-04 14:41:09 +02:00
  • e0b818f8fa chore: stalebot: disable dryrun by default Stéphane Lesimple 2026-04-04 14:38:40 +02:00
  • 4af11551ba feat: implement CVE-2024-28956 (ITS, Indirect Target Selection) vulnerability and mitigation detection Stéphane Lesimple 2026-04-04 14:36:14 +02:00
  • dfed6f35c5 doc: add note about more unsupported CVEs Stéphane Lesimple 2026-04-04 14:30:05 +02:00
  • 1652977f47 add a generated version of src/libs/003_intel_models.sh Stéphane Lesimple 2026-04-04 14:20:18 +02:00
  • a089ae8cef fix: sys_interface_check() must set the caller's $msg var (closes #533) Stéphane Lesimple 2026-04-04 14:19:47 +02:00