This new firmware disables branch prediction on AMD family 17h processor.
please test and mark stable: =sys-kernel/linux-firmware/linux-firmware-20180103-r1
An automated check of this bug failed - the following atom is unknown:
Please verify the atom list.
Looks like Suse mixed things up. This update does not disable branch prediction: https://www.phoronix.com/scan.php?page=news_item&px=AMD-Branch-Prediction-Still
So I've removed "disables branch prediction" from subject. Let's see what further clarifications we will have.
Red Hat seems to have more information on what the microcode update does (if they are indeed talking about this one):
Please update -> https://wiki.gentoo.org/wiki/Project:Security/Vulnerabilities/Meltdown_and_Spectre
A CPU microcode update was added which will disables branch prediction on AMD family 17h processors (800F12 only). The updated microcode is included in >=sys-kernel/linux-firmware-20180103-r1 which is currently being stabilized in bug #643476.
--> which will disables branch prediction on AMD <--
It doesn't disable it. Should be reword to "A CPU microcode update was added on AMD family 17h processors (800F12 only) to mitigate the issue."
Source for your claim? Our text was bundled with the firmware blob we received from AMD.
Don't get me wrong. You might be right. But until we have a better source we stick with upstream's wording. Also, we are looking for someone who as access to an affected processor (AMD EPYC 7551).
Sorry from peter comment #7 phoronix link.
<I reached out to AMD and on Friday heard back. They wrote in an email to Phoronix that this Zen/17h microcode update does not disable branch prediction.>
If you don't know who to trust, the rephrasing will do nothing if it really disable branch prediction (you don't lie saying "to mitigate the issue", but if it does not, you have avoid to spread a fake/false news spreading.
Better safe than sorry.
Author: Rolf Eike Beer <firstname.lastname@example.org>
Date: Sat Feb 10 19:40:37 2018 +0100
sys-kernel/linux-firmware: stable 20180103-r1 for sparc, bug #643476
Stable on alpha.
All arches done and vulnerable versions have been dropped for a while already.
No GLSA required.