Categories

Archive

June 2025
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
30  

Most viewed posts

Browsing Posts in vDesign

What’s really define an HCI solution?

16 March 2018
Comments off

Reading Time: 5 minutesMost people probably already know the terms Converged infrastructures (CI) and HyperConverged Infrastructures (HCI) that are both become quite common in the IT world, with several products and solutions that aim to be fit in those classifications. HCI has become a hot topic with several vendors that aim to be a leader in this area, or with several “magic quadrants” that try to define who is in. But like happens with the Software Defined Something (especially the Software Defined Software) it’s not always easy to determine what really can fit in a classification and what not. […]

Highlights, vProducts, vStorage ,

Other bugs for AMD’s CPU

15 March 2018
Comments off

Reading Time: 2 minutesNow that Meltdown and Spectre vulnerabilities are almost fixed, there is a new critical vulnerabilities, this time specific only for several AMD CPU. There are 13 critical security vulnerabilities and manufacturer backdoors discovered throughout AMD Ryzen & EPYC product lines. Yes, also the lates AMD CPU models! Like with Meltdown and Spectre, there is a dedicated web site (amdflaws.com) that provide more detail about them.

vSecurity

Altaro VM Backup version 7.6

8 March 2018
Comments off

Reading Time: 4 minutesAltaro is a fast-growing software company with easy to use and affordable (also for the price) backup solutions for small- to medium-sized businesses, specializing in backup for virtualized environments. After a beta period, with several different build, they have now officially released the new version 7.6.4.

vBackup, vProducts ,

VMware vCenter 6.5U1f patch for Meltdown and Spectre issues

19 February 2018
1 comment

Reading Time: 3 minutesVMware has released (on Feb, 15th) a new vCSA version: vCenter Server 6.5 U1f, with build number 7801515. This release patches the vCSA operating system (Photon OS) mainly against two vulnerabilities: bounds-check bypass (Spectre-1, CVE-2017-5753) and rogue data cache load issues (Meltdown, CVE-2017-5754). As of now, there is still no patch for branch target injection vulnerability (Spectre-2, CVE-2017-5715). VMware has also updated the security advisory dealing with all of its virtual appliances updates for Spectre and Meltdown vulnerabilities, VMSA-2018-0007. But note that VMSA-2018-0004.2 has not been updated yet, and it still report that the suggested version for […]

VMware, vSecurity , ,

New Meltdown and Spectre variants

19 February 2018
Comments off

Reading Time: 2 minutesWe are still far from a solution for the Meltdown and Spectre, considering the delay of the microcode releases and the complexity of the possible Spectre fixes… And now, some security researchers from NVIDIA and Princeton have discovered new variants of the Meltdown and Spectre flaws that may be more difficult to be fixed (but also to be exploited) than the originals.

vSecurity

Analyze performance impact of Spectre and Meltdown patches

15 February 2018
Comments off

Reading Time: 6 minutesThe mitigations for Meltdown and Spectre issues have involved a combination of different type of fixes: some software based, such as Microsoft and Linux versions of the “kernel page table isolation” protection, but also fome hardware based, like the Intel’s microcode updates (part that is still missing in most cases). Both type of patches can cause performance overheads and have some kind of impact on your environment. But how can you estimate it (before apply the patches) and how can you measure it (when the patches have been applied)?

vSecurity ,

Meltdown and Spectre: far from the solution?

12 February 2018
Comments off

Reading Time: 8 minutesIn June 2017, a team constituted of independent researchers, university research labs, and some of Google’s Project Zero members and cyberus technology discovered two security vulnerabilities enabled by the widespread use of speculative execution in most of the CPU. The problem was also independently discovered by other researchers, at about the same time. These vulnerabilities, called Meltdown and Spectre, were made public in January 2018. Meltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal […]

vSecurity
© 2025-2011 vInfrastructure Blog | Disclaimer & Copyright