More clarity regd. recent cpu vulnerabilites

Firstly, this was a great post by Christian Reis in 2018:

However, since back then newer forms have been reported.

And so I was wondering if Christian’s post can be updated to reflect the new info. It’s a very nice one stop resource for novices like me.
In the post can the following also be included:

  1. I’d also like to know whether hyper-threading is turned off by default (as recommended by GKH in The Register article mentioned above) on Ubuntu or not, and if not how to do so.
  2. How to identify what mitigations are turned on currently. How should I interpret the output of grep . /sys/devices/system/cpu/vulnerabilities/*

Apologies in advance if this is not the correct place to ask these questions and feel free to take down the post if necessary.

Perhaps a different format than you prefer, but the Ubuntu Security Podcast has regularly revisited and updated work in this set of issues.


Wow! I was not aware of this. Thanks.