Alliances
1748245 Members
3556 Online
108760 Solutions
New Article
Willa

Resources to help mitigate Speculative Execution vulnerability in Intel and other processors

The news of the recently discovered vulnerabilities in processors from Intel and other manufacturers utilizing “Speculative Execution” technology has been featured prominently across many news outlets. You may have also heard of it by the names of “Meltdown” and “Spectre”.

Just like with any other vulnerability, it is highly advisable to apply any available security updates to your system in a timely manner in order to mitigate any potential attack vector.

In this specific case, mitigation and resolution of these vulnerabilities calls for both updates to the operating system as well as to your HPE ProLiant server's system ROM.

The links below provide further information as well as guidance where to obtain OS (Microsoft) and system ROM updates (HPE):


Microsoft – Windows Server
:
https://support.microsoft.com/en-us/help/4072698/windows-server-guidance-to-protect-against-the-speculative-execution

NOTE: there are two steps required:
- Step 1: Download and install the Windows Server OS updates listed in the table referenced in the Microsoft support article above from Windows Update
- Step 2: A set of registry keys has to be enabled in order to switch on the mitigations introduced by the OS updates installed in step 1, please see the instructions in the support article.

Should Windows Update not offer the OS updates listed in the support article linked above, please refer for guidance to the following Microsoft resource covering a potential issue with a small subset of anti-virus products: https://support.microsoft.com/en-us/help/4072699/important-information-regarding-the-windows-security-updates-released


HPE – System ROM updates
(may require active warranty and/or HPE support agreement):
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-a00039267en_us

NOTE: The bulletin is being updated periodically as more system ROM updates become available, please check back frequently should your specific ProLiant Gen8 or Gen9 server model be listed under ‘Scope’ for system ROM future availability.

 

Have additional questions? Check out our Speculative Execution vulnerability: frequently asked questions blog.

 

About the Author

Willa

Willa manages the HPE | Microsoft Coffee Coaching program. Follow along to learn more about the latest HPE OEM Microsoft product releases and how the HPE Microsoft partnership can benefit partners and customers.

Comments