Reading Time: 7 minutes The L1 Terminal Fault (aka Foreshadow) bug is another speculative execution side channel attack that affects Intel Core processors and Intel Xeon processors only. For VMware vSphere, there are some patches available as described in this document: VMSA-2018-0020. All patches have been released on August, 14th 2018.
Reading Time: 4 minutes This is the year of the security threats originated by hardware level bugs. The year has begun with the Spectre and Metldown bug with several months of possible solutions, new BIOS, new patches… and new variants of those bugs (like Spectre V4 and V5). But we are far from the solution because other bugs came out. And more will come out… All the software used at the microprocessor level and all the optimizations will probably be a good vector for new attack patterns. As already written, we are still far from the solution.
Reading Time: 2 minutes Now that Meltdown and Spectre vulnerabilities are almost fixed, there is a new critical vulnerability for several Intel CPU called BranchScope, discovered by some researchers from four universities. It’s again a speculative execution issue, in the method a processor uses to predict where its current computational task. By exploiting this flaw, attackers with local access could pull data stored from memory that’s otherwise inaccessible to all applications and users.
Reading Time: 2 minutes Now that Meltdown and Spectre vulnerabilities are almost fixed, there is a new critical vulnerabilities, this time specific only for several AMD CPU. There are 13 critical security vulnerabilities and manufacturer backdoors discovered throughout AMD Ryzen & EPYC product lines. Yes, also the lates AMD CPU models! Like with Meltdown and Spectre, there is a dedicated web site (amdflaws.com) that provide more detail about them.
Reading Time: 3 minutes Runecast announces the new release version 1.7 of its proactive issue detection software, Runecast Analyzer. After the Meltdown and Spectre detection added in the previous releases, this latest version brings other interesting news. Runecast Analyzer is powered by the largest database of automated VMware KB articles which feed its internal archive of known issues. The interesting aspect of this tool is that it’s very easy and fast to be deployed and that it can work fully in offline mode!
Reading Time: 4 minutes On May 2017, Dell EMC announced the next generation of PowerEdge servers: the new 14th generation, the first with the new Dell-EMC logo. After less than 3 years from the introduction of Generation 13 of PowerEdge series, the newly designed 14th generation of the Dell EMC PowerEdge server portfolio forms a secure, scalable compute platform that is the ideal foundation for cloud, analytics or software-defined data center initiatives. Of course, the new series was not complete with all models at the launch and has been shapen in the following months.
Reading Time: 9 minutes This is an article realized for StarWind blog and focused on the pro and cons of an upgrade to vSphere 6.5. See also the original post. VMware vSphere 6.5 is the latest version of the enterprise server virtual platform from VMware, but the new beta it’s already there for testers. Actually the next version it’s (in the beta) and you can register at https://secure.vmware.com/43478_vSphere_Beta_Reg.
| Disclaimer & Copyright
