By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

RETBleed: WARNING: Spectre v2 mitigation leaves CPU vulnerable to RETBleed attacks, data leaks possible!

0

Hi all! I'm frequently encountering this warning on my EC2 instances, and I'm concerned about security. I've searched the internet for solutions, but I haven't found any specific answers. Has anyone else faced this issue and successfully resolved it? Please, I need assistance.

message
2023-09-18T11:07:07.184256+09:00 ip-172-22-23-122 kern.err kernel: [    1.943519] RETBleed: WARNING: Spectre v2 mitigation leaves CPU vulnerable to RETBleed attacks, data leaks possible!
serverName : LocalIP
ip-172-22-23-122.ap-northeast-1.compute.internal : 172-22-23-122
logFile
/var/log/messages
Topics
Compute
Tags
Amazon EC2
Language
English
awsprofile
asked 5 months ago1319 views
2 Answers
0

And below is my OS info.

NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/"
BUG_REPORT_URL="https://bugs.centos.org/"

CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="7"

CPU profile:

Architecture:          x86_64
CPU op-mode(s):        32-bit, 64-bit
Byte Order:            Little Endian
CPU(s):                2
On-line CPU(s) list:   0,1
Thread(s) per core:    2
Core(s) per socket:    1
Socket(s):             1
NUMA node(s):          1
Vendor ID:             GenuineIntel
CPU family:            6
Model:                 85
Model name:            Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
Stepping:              7
CPU MHz:               2499.998
BogoMIPS:              4999.99
Hypervisor vendor:     KVM
Virtualization type:   full
L1d cache:             32K
L1i cache:             32K
L2 cache:              1024K
L3 cache:              36608K
NUMA node0 CPU(s):     0,1
Flags:                 fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch invpcid_single rsb_ctxsw fsgsbase tsc_adjust bmi1 avx2 smep bmi2 erms invpcid mpx avx512f avx512dq rdseed adx smap clflushopt clwb avx512cd avx512bw avx512vl xsaveopt xsavec xgetbv1 ida arat pku ospke
awsprofile
answered 5 months ago
0

As your EC2 is running on shared hardware - basically a big server in an AWS data centre - along with other EC2 instances, this is warning that it's theoretically possible for another of those EC2 instances to access memory that should only be accessible to your EC2.

You're running CentOS 7, so Red Hat's response for RHEL7 will likely be applicable to you https://access.redhat.com/solutions/retbleed

Other flavours of Linux will likely have their own responses if you look for them.

profile picture
EXPERT
Steve_M
answered 5 months ago
profile picture
EXPERT
Gary Mclean
reviewed 5 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content