Meltdown and Spectre Mitigation
Posted by Florin Finaru on 11 January 2018 10:18 AM
Two new security vulnerabilities have been made public, which affect nearly all devices containing a processor. Due to these chip design flaws, an attacker is able to run a speculative execution side channel attack and manipulate a system under certain conditions (CVE-2017-5715, CVE-2017-5753, CVE-2017-5754). As a result, our entire range of past and current products is affected.
In order to mitigate the vulnerabilities, your systems will require to be updated:
Microsoft has already released updates for Windows 7, Windows 8, Windows 10 and various releases of Windows Server. Kernel updates are available as well for all major Linux distributions.
Microcode (BIOS) update - Fix for Spectre v2
Intel and other component manufacturers will start releasing patches the week commencing 15.01.2018. We will update this page as these become available.
Impact on performance
Applying these updates will impact performance though. It is currently reported that the latest CPU models (Skylake, Kabylake or newer) are going to be the least affected, with an increased impact for older generations.