** Description changed: After discussion between Intel and Canonical’s security teams, we are in agreement that Spectre no longer needs to be mitigated for the GPU at the Compute Runtime level. At this point, Spectre has been mitigated in the kernel, and a clear warning from the Compute Runtime build serves as - a warning for those running modified kernels without those patches. For - these reasons, we feel that Spectre mitigations in Compute Runtime no - longer offer enough security impact to justify the current performance - tradeoff. + a notification for those running modified kernels without those patches. + For these reasons, we feel that Spectre mitigations in Compute Runtime + no longer offer enough security impact to justify the current + performance tradeoff. Intel themselves have disabled this flag in their builds available on their Github release page upstream. PPA: https://launchpad.net/~mckeesh/+archive/ubuntu/lp2110131
-- You received this bug notification because you are a member of Ubuntu-X, which is subscribed to intel-compute-runtime in Ubuntu. https://bugs.launchpad.net/bugs/2110131 Title: NEO_DISABLE_MITIGATIONS flag default should be true To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/intel-compute-runtime/+bug/2110131/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~ubuntu-x-swat Post to : ubuntu-x-swat@lists.launchpad.net Unsubscribe : https://launchpad.net/~ubuntu-x-swat More help : https://help.launchpad.net/ListHelp