Dear Qubes Community,
We have just published Qubes Security Bulletin (QSB) 083: Retbleed:
Arbitrary speculative code execution with return instructions (XSA-407).
The text of this QSB is reproduced below. This QSB and its accompanying
signatures will always be available in the Qubes Security Pack
(qubes-secpack).
View QSB-083 in the qubes-secpack:
<https://github.com/QubesOS/qubes-secpack/blob/master/QSBs/qsb-083-2022.txt>
In addition, you may wish to:
- Get the qubes-secpack: <Qubes security pack (qubes-secpack) | Qubes OS>
- View all past QSBs: <Qubes security bulletins (QSBs) | Qubes OS>
- View the XSA Tracker: <Xen security advisory (XSA) tracker | Qubes OS>
```
---===[ Qubes Security Bulletin 083 ]===---
2022-07-12
Retbleed
Arbitrary speculative code execution
with return instructions (XSA-407)
User action required