Quote:Do the new meltdown / spectre kernels update automatically or is this something I have to manually do using Synaptic Package Manager
For kernel updates follow this link and read through the thread.
https://www.linuxliteos.com/forums/linux.../#msg38277
Quote:Is the kernel posted above secure enough or is there a new more secure kernel which I should update to
run this command to find out
Code:
$ grep . /sys/devices/system/cpu/vulnerabilities/*
I run this kernel in Ubuntu 16,04 and it is mitigated against Meltdown with KPTI and mitigated against Spectre variant 1, and Firefox 58 is in the LTS version. You're good enough.
TC
Here are my results on Ubuntu 16.04 LTS with your listed kernel. The long command is correct for Ubuntu and/or LL. The unpatched frowny face is for no exiting Intel microcode updates as yet.
https://imgur.com/a/wX54Z
TC
The 4.4.0-116 kernel now fixes everything. I ran the checker after install and boot of the new kernel and now all three variants say 'NOT VULNERABLE'.
Sooo, if I’m on 4.10, I have to revert to 4.4.0-116 to get the fix?
![[Image: b5oEKhZ.png]](https://i.imgur.com/b5oEKhZ.png)