RIDL and Fallout

In May 2019, Linode announced that they have started providing patched kernels against ZombieLoad ( https://www.linode.com/2019/05/15/intels-mds-zombieload-cpu-vulnerabilities-linode/ ).

However, ZombieLoad is not the only MSD-related (Microarchitectural Data Sampling) vulnerability. As far as I know, there are also RIDL and Fallout; see https://mdsattacks.com/ . These latter vulnerabilities are not mentioned in Linode's announcement.

Are RIDL and Fallout also patched already?

1 Reply

As far as I can tell, RIDL and Fallout were released at the same time as ZombieLoad (in fact, ZombieLoad has the same CVE as one of the CVEs listed on the RIDL page). They just didn't get the fanfare that ZombieLoad did, because ZombieLoad had a much better marketing team (why do vulnerabilities need marketing teams?). The microcode and kernel updates cover all of the attacks.


Please enter an answer

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct