Multiple types of processors classified as Cascade Lake (2nd Generation Intel® Xeon® Scalable Processors) are marked as vulnerable to Retbleed

Solution Verified - Updated -

Issue

  • Multiple types of processors classified as Cascade Lake (2nd Generation Intel® Xeon® Scalable Processors) are marked as "Vulnerable" to Retbleed when they should be marked as "Not affected."
sys/devices/system/cpu/vulnerabilities/tsx_async_abort:Not affected
sys/devices/system/cpu/vulnerabilities/srbds:Not affected
sys/devices/system/cpu/vulnerabilities/spectre_v2:Mitigation: Enhanced IBRS, IBPB: conditional, RSB filling, PBRSB-eIBRS: SW sequence
sys/devices/system/cpu/vulnerabilities/spectre_v1:Mitigation: usercopy/swapgs barriers and __user pointer sanitization
sys/devices/system/cpu/vulnerabilities/spec_store_bypass:Mitigation: Speculative Store Bypass disabled via prctl
sys/devices/system/cpu/vulnerabilities/retbleed:Vulnerable <<-------
sys/devices/system/cpu/vulnerabilities/mmio_stale_data:Vulnerable: Clear CPU buffers attempted, no microcode; SMT Host state unknown
sys/devices/system/cpu/vulnerabilities/meltdown:Not affected
sys/devices/system/cpu/vulnerabilities/mds:Not affected
sys/devices/system/cpu/vulnerabilities/l1tf:Not affected
sys/devices/system/cpu/vulnerabilities/itlb_multihit:KVM: Mitigation: VMX unsupported

Architecture:        x86_64
CPU op-mode(s):      32-bit, 64-bit
Byte Order:          Little Endian
CPU(s):              20
On-line CPU(s) list: 0-19
Thread(s) per core:  1
Core(s) per socket:  1
Socket(s):           20
NUMA node(s):        1
Vendor ID:           GenuineIntel
BIOS Vendor ID:      GenuineIntel
CPU family:          6
Model:               85 <<------- 0x55H
Model name:          Intel(R) Xeon(R) Gold 6226R CPU @ 2.90GHz
BIOS Model name:     Intel(R) Xeon(R) Gold 6226R CPU @ 2.90GHz
Stepping:            7
CPU MHz:             2893.202
BogoMIPS:            5786.40
Hypervisor vendor:   VMware
Virtualization type: full
L1d cache:           32K
L1i cache:           32K
L2 cache:            1024K
L3 cache:            22528K
NUMA node0 CPU(s):   0-19
Flags:               fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss syscall nx pdpe1gb rdtscp lm constant_tsc arch_perfmon nopl xtopology tsc_reliable nonstop_tsc cpuid pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch invpcid_single ssbd ibrs ibpb stibp ibrs_enhanced fsgsbase tsc_adjust bmi1 avx2 smep bmi2 invpcid avx512f avx512dq rdseed adx smap clflushopt clwb avx512cd avx512bw avx512vl xsaveopt xsavec xgetbv1 xsaves arat pku ospke avx512_vnni md_clear flush_l1d arch_capabilities

Environment

  • Red Hat Enterprise Linux
  • Intel 2nd Generation Intel® Xeon® Scalable Processors (Products formerly Cascade Lake)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content