RSS Feed
News
Jan
4
[INFO] Critical - Meltdown & Spectre CPU vulnerabilities
Posted by Niels Willemsen on 04 January 2018 18:29

Dear Client, partner,

This week details of a new security vulnerability were made public, known as Meltdown & Spectre. These are hardware bugs which exploit a vulnerability in modern Intel processors and can be used to steal data. The vulnerabilities are also known under the CVE ID’s CVE-2017-5753 and CVE-2017-5715 .

Fortunately the leaks have been patched in the most commonly used operating systems.

The ClearMedia Techteam is currently performing all necessary patching on our managed systems; however, we strongly recommend to our partners and customers to patch their systems, both those inside and outside our virtual environment.

Depending on your Windows version, one of the following patches needs to be installed.

Operating System Version

Update KB

Windows Server, version 1709 (Server Core Installation)

4056892

Windows Server 2016

4056890

Windows Server 2012 R2

4056898

Windows Server 2012

Not available

Windows Server 2008 R2

4056897

Windows Server 2008

Not available

These patches are available both on the public Windows update server and the ClearMedia WSUS servers.

For Linux systems you can install the patch using the distro's update commands.

In both cases a system reboot is required for the patch to take effect.

More information can be found under the following sources:

https://support.microsoft.com/en-us/help/4072698/windows-server-guidance-to-protect-against-the-speculative-execution-s

https://www.cyberciti.biz/faq/patch-spectre-vulnerability-cve-2017-5753-cve-2017-5715-linux/

The ClearMedia TechTeam

 


Comments (0)
Post a new comment
 
 
Full Name:
Email:
Comments: