Meltdown and Spectre are hardware-level vulnerabilities. As such, every operating system is susceptible.
APM Appliance
The Foglight APM product runs on SUSE. SUSE does not yet have a patch available or an ETA for the fix, but since the APM is a closed-source appliance-based system, there is no perceived risk from the APM appliance at this time. Vendor patches will be added to the patch feed (provided by our patch vendor) as they are released and tested.
As customers upgrade their infrastructure Quest will stay vigilant for any potential performance impact as a result of the patches on heavy loaded systems such as database server.
Vendor Specific Information & Resources
Official Release: https://meltdownattack.com/
Google: https://security.googleblog.com/2018/01/more-details-about-mitigations-for-cpu_4.html
Foglight Management Server and Agent Manager Supported Operating Systems
CentOS: https://www.centos.org/forums/viewtopic.php?t=65591
Microsoft: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180002
* NOTE: Microsoft Windows patches were added to the patch feed on 1/5/18.
* NOTE: Microsoft Windows patches will only be detected missing on systems with the existence of a registry value written by anti-virus vendors to avoid BSOD or worse issues. More information is available here.
Oracle: https://linux.oracle.com/errata/ELSA-2018-0007.html
RedHat: https://access.redhat.com/security/vulnerabilities/speculativeexecution
SuSE: https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/
Ubuntu: https://insights.ubuntu.com/2018/01/04/ubuntu-updates-for-the-meltdown-spectre-vulnerabilities
Foglight Supported Virtualization Platforms
VMware: https://blogs.vmware.com/security/2018/01/vmsa-2018-0002.html
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center