Spectre - Meltdown
Added 11 months ago
Following the announcement of Spectre and Meltdown vulnerabilities, we have installed the latest stable version of the Jessie Kernel. After strong testing in real environment, our conclusions are the following:
- MailCleaner kernel is not vulnerable to Meltdown with the last kernel
- MailCleaner is still vulnerable to all variants of Spectre but our investigations do not show any way to exploit this vulnerability from outside the product.
- We can not see any increase of the load of MailCleaner servers using this last version of the kernel in comparison of oldest one.
Note that MailCleaner can not comment on the influence of the patching on all other levels (processors, virtualization layer,…)
Only MailCleaner servers in 201709 and upper can benefit of this patch
New installations and upgrade from 201610 to 201709 starting at today will automatically be patched
To apply the patch on 201709 installed before today customers can apply this kernel upgrade with classic apt commands
apt-get update apt-get upgrade