VOOZH

URL: https://www.phoronix.com/news/Linux-6.18-AVC-VMSCAPE

⇱ Attack Vector Controls Can Now Manage VMSCAPE Mitigation - Phoronix

👁 Phoronix

Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Attack Vector Controls Can Now Manage VMSCAPE Mitigation

Written by Michael Larabel in Linux Security on 1 October 2025 at 04:51 PM EDT. 5 Comments

👁 LINUX SECURITY

Made public and mitigated within the mainline Linux kernel last month was the VMSCAPE vulnerability affecting both AMD and Intel CPUs. Now merged for the in-development Linux 6.18 kernel is adding VMSCAPE to the recently-introduced Attack Vector Controls functionality.

Attack Vector Controls was merged in Linux 6.17 as a new means of controlling Linux CPU security vulnerability mitigations. With Attack Vector Controls you just need to manage the system/server use-cases and in turn the classes of possible CPU security attacks (such as VM usage with guest to host attacks or cross-VM untrusted scenarios) rather than managing CPU mitigation options individually.

With Linux 6.18, VMSCAPE is now covered by the Attack Vector Controls support. VMSCAPE mitigations are applied with Attack Vector Controls just for those concerned about guest-to-host attack vectors.

This support was merged via the x86/bugs pull.

5 Comments

ML-KEM + X-Wing Patches Posted For Linux To Help With Post-Quantum Security

Linux AF_ALG Crypto Code Removing Zero-Copy Support Out Of Security Concerns

Dirty Frag Vulnerability Made Public Early: Root Privilege On All Distributions

Linux Out-Of-Bounds Access Fixed For Unprivileged Users With Specially Crafted Certs

AppArmor Enhancements Merged For Linux 7.0

Linux 7.0 Lands ML-DSA Quantum-Resistant Signature Support

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Arch Linux Now Believes Malware Incident Under Control: More Than 1,500 Affected Packages

ReactOS "Open-Source Windows" Reaches The Milestone Of Being Able To Run Half-Life

macOS 27 Beta Breaks The Ability To Boot Asahi Linux

Arch Linux's AUR Sees More Than 400 Packages Compromised With Malware

Arch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attack

Russian Spam & Profanities Are Now Plaguing The Arch Linux AUR

YSERVER: Modern X11 Server Written In Rust With The Help Of Claude Code

AMD Opens Pre-Orders For The Linux-Friendly Ryzen AI Halo Developer Platform

Support Phoronix
While Having Ad-Free Browsing,
Single-Page Article Viewing

Legal Disclaimer, Privacy Policy, Cookies | | Contact
Copyright © 2004 - 2026 by Phoronix Media.
All trademarks used are properties of their respective owners. All rights reserved.