"BoringSSL, LibreSSL and the OpenSSL 1.1.1 branch are not affected. Furthermore, only x64 systems with AVX512 support are affected."
> the vulnerability has only existed for a week (HB existed for years) and an AVX512-capable CPU is required.
So I'm guessing the real world impact here is near zero?
What systems or distros are shipping this week old version already?
> the vulnerability has only existed for a week (HB existed for years) and an AVX512-capable CPU is required.
So I'm guessing the real world impact here is near zero?
What systems or distros are shipping this week old version already?