SUSE Addresses Meltdown and Spectre Vulnerabilities


Company released patches for most recent SUSE Linux Enterprise (SLE) versions

BENGALURU, India – January 11, 2018 – SUSE® today announced the release of patches for recent SUSE Linux Enterprise (SLE) versions to address Meltdown and Spectre Vulnerabilities. The company also announced that the additional patches for other SLE versions and environments will follow shortly.

Last week, security community and a number of IT vendors announced the existence of several hardware security vulnerabilities that allow potential exploits across a range of hardware architectures and operating systems including but not limited to Linux. SUSE engineers immediately collaborated with the partners and the Linux community on upstream Linux kernel patches.

The company is updating all the information on the patches, which can be viewed on Technical Information Document page.

SUSE also provides the additional details on specific vulnerabilities and can be viewed in CVE reports:

https://www.suse.com/security/cve/CVE-2017-5753/

https://www.suse.com/security/cve/CVE-2017-5715/

https://www.suse.com/security/cve/CVE-2017-5754/

Citing the vulnerabilities, Rajarshi Bhattacharyya, Country Head at SUSE said, “The attack against modern CPUs has put a wide variety of systems at risk. SUSE as an operating system vendor has always been the first to address these sort of issues. We encourage organizations to use paid subscriptions which provide enterprise-grade support and security for running their workloads. This allows OS vendors to fix bugs in real time and prevent the loss of critical information. We also encourage service providers who have very stringent SLA’s to use more enterprise Linux operating system as that will help them adhere to their SLA’s inspite of such severe issues.

SUSE informed that due to the nature of this issue, applying the maintenance updates will require a reboot of the operating system. As the research on these issues continues across the industry, the company will continuously update details on the same and will be releasing kernel updates for all maintained SUSE products to mitigate these issues.

# # #

About SUSE

SUSE, a pioneer in open source software, provides reliable, software-defined infrastructure and application delivery solutions that give enterprises greater control and flexibility. More than 25 years of engineering excellence, exceptional service and an unrivaled partner ecosystem power the products and support that help our customers manage complexity, reduce cost, and confidently deliver mission-critical services. The lasting relationships we build allow us to adapt and deliver the smarter innovation they need to succeed-today and tomorrow. For more information, visit www.suse.com.

Copyright 2017 SUSE LLC. All rights reserved. SUSE and the SUSE logo are registered trademarks of SUSE LLC in the United States and other countries. All third-party trademarks are the property of their respective owners.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: