IBRS suffix of CPU models in QEMU

cpu-architecture qemu

Solution 1:

The CPU model with the -IBRS suffix has Spectre V2 (CVE-2017-5715) mitigation turned on by default in the guest.

The CPU model without the suffix has the mitigation off by default.

Unless you have a specific, extremely compelling reason to not have this mitigation, you should always use the IBRS variant of the virtual CPU.

Related

Ubuntu 20.04 packages with an "{u}" in their name
How can I install nspr 4.25 on CentOS 7?
I've lost my router's ip address [closed]
Intermittent KVM performance issues causing performance glitches
SMTP relay server static public IP always being blocked
How to tag launch template _itself_ in AWS with JSON and `create-launch-template` AWS CLI
Assign Domain to IP Address which has a path [duplicate]
NGINX 1.13.8 Rewrite url not works
Nginx Ingress-Controller Load Balancing
Fedora 33/32 - Install PHP 7.3
Running MySQL 8 in Docker with Windows Host (WSL) the volumen for data directory is unusable
Forward messages to Gmail (postfix+SRS) has DMARC failure even though SPF and DKIM succeed