Categories

Archive

Maggio 2025
L M M G V S D
 1234
567891011
12131415161718
19202122232425
262728293031  

Most viewed posts

Browsing Posts in Sicurezza

Meltdown and Spectre: far from the solution?

12 Febbraio 2018
Comments off

Reading Time: 8 minutesIn June 2017, a team constituted of independent researchers, university research labs, and some of Google’s Project Zero members and cyberus technology discovered two security vulnerabilities enabled by the widespread use of speculative execution in most of the CPU. The problem was also independently discovered by other researchers, at about the same time. These vulnerabilities, called Meltdown and Spectre, were made public in January 2018. Meltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal […]

vSecurity

Linux Kernel 4.15 contro Meltdown e Spectre

9 Febbraio 2018
Comments off

Reading Time: 5 minutesLinux Kernel 4.15 è stato rilasciato il 28 gennaio 2018, dopo un lungo ciclo di sviluppo, tanto da arrivare alla RC9, cosa che non succedeva dal 2011. Questa versione è la prima che contiene specifiche ottimizzazioni e soluzioni specifiche per Meltdown e Spectre issues (benché anche alcuni kernel precedenti avessero alcune protezioni). Notare che in realtà i problemi sono tre problemi distinti: Meltdown è uno, ma poi ci sono due varianti di Spectre (note come v1 e v2). Il Kernel 4.15 al momento manca ancora mancano ancora dei fix per ARM e per la variante 1 […]

Generale, Sicurezza none

Check dei bug Meltdown e Spectre tramite Runecast

5 Febbraio 2018
Comments off

Reading Time: 6 minutesMeltdown e Spectre sono delle vulnerabilità alquanto serie che affliggono la maggior parte dei processori esistenti sul mercato, rendendo quindi potenzialmente attaccabili sistemi come personal computer, server, dispositivi mobile, ma anche molti servizi di tipo cloud. Purtroppo non esiste un modo semplice (e chiaro) per minimizzare l’impatto di questi due bug, anche perché bisogna applicare diverse patch a diversi livelli. Per gli ambienti VMware, come già scritto, esistono diversi tools per controllare la situazione (e anche alcuni tool per applicare le patch richieste).

Prodotti, Sicurezza none

Meltdown and Spectre: are storage affected?

19 Gennaio 2018
Comments off

Reading Time: 6 minutesMeltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal computers, mobile devices, server and several cloud services. Actually, the only way to minimize those security risks is to patch your operating systems or the hypervisor level (if you are using virtual machines).

vProducts, vSecurity, vStorage

Meltdown and Spectre: Nutanix products

16 Gennaio 2018
No comments

Reading Time: 5 minutesMeltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal computers, mobile devices, server and several cloud services. Actually, the only way to minimize those security risks is to patch your operating systems and the hypervisor level (if you are using virtual machines).

Nutanix, vSecurity

Meltdown and Spectre: check a vSphere environment

13 Gennaio 2018
No comments

Reading Time: 6 minutesMeltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal computers, mobile devices, server and several cloud services. Actually, the only way to minimize those security risks is to patch your operating systems, but also the hypervisor level and the hardware level (if vendors provide a new firmware).

VMware, vSecurity

Meltdown and Spectre: Dell-EMC products

11 Gennaio 2018
Comments off

Reading Time: 5 minutesMeltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal computers, mobile devices, server and several cloud services. Actually, the only way to minimize those security risks is to apply different type of patches at different levels, including operating systems, the hypervisor , the hardware level, …

DellTechnologies, vSecurity
© 2025-2011 vInfrastructure Blog | Disclaimer & Copyright