Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana

Last post 01-11-2018, 11:14 AM by StorageGuy007. 5 replies.
Sort Posts: Previous Next
  • Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana
    Posted: 01-08-2018, 10:46 PM

    Hello,

    I am currently running through our major systems and investigating the impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown).

    I have been unable to find comment from Commvault on the impact of any of these CVE or of any compaditiblity issues with the relevant Windows update (KB4056898) on the Simpana product.

    Will there be an announcement, software update etc?

     

    Regards,

    MRSCNWSYS

  • Re: Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana
    Posted: 01-09-2018, 10:44 AM

    Hi,

    We have an announcement related to Spectre and meltdown on the documenatation site.

    http://documentation.commvault.com/commvault/v11/article?p=announcement/announcements.htm

     

    Thanks,

    Seema Ghai

     

  • Re: Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana
    Posted: 01-09-2018, 10:44 AM

    Hi,

    We have an announcement related to Spectre and meltdown on the documenatation site.

    http://documentation.commvault.com/commvault/v11/article?p=announcement/announcements.htm

     

    Thanks,

    Seema Ghai

     

  • Re: Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana
    Posted: 01-09-2018, 5:25 PM

    Thank you very much for that.

    Have you tested for any software compatibility issues with the new Windows Updates (KB4056898 for us)?

    MRSCNWSYS

  • Re: Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana
    Posted: 01-11-2018, 10:27 AM

    CommVault in general is not affected directly, that is understood. Should we be expecting any special direction around CommVault provided Virtual Appliances such as the FREL VM, or are we on our own to find the best route to patch at the Guest OS level?


    -J. Mills
    Customer, Senior Systems Engineer
    Enterprise Storage and Data Protection
    CommVault Certified Master (V10/V11)
  • Re: Impact of CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754 (Spectre and Meltdown) on Simpana
    Posted: 01-11-2018, 11:14 AM

    Hi Jason,

    The next FREL release will include OS patches for spectre and meltdown. (This may not necessarily mean SP11, as it might be in the form of an updated OVA for the current service pack FREL's. Though the ETA is not confirmed yet, and being actively worked on.) -

    As an immediate solution, the SP10 FREL has the added functionality where the user can choose to have it automatically check for and apply OS security updates. This would include the OS security updates for spectre and meltdown.

    For SP9, please manually patch the OS as the SP9 FREL does not have the automatic checking feature.


    Gary Seibak
    Technical Account Manager - Commvault
The content of the forums, threads and posts reflects the thoughts and opinions of each author, and does not represent the thoughts, opinions, plans or strategies of Commvault Systems, Inc. ("Commvault") and Commvault undertakes no obligation to update, correct or modify any statements made in this forum. Any and all third party links, statements, comments, or feedback posted to, or otherwise provided by this forum, thread or post are not affiliated with, nor endorsed by, Commvault.
Commvault, Commvault and logo, the “CV” logo, Commvault Systems, Solving Forward, SIM, Singular Information Management, Simpana, Commvault Galaxy, Unified Data Management, QiNetix, Quick Recovery, QR, CommNet, GridStor, Vault Tracker, InnerVault, QuickSnap, QSnap, Recovery Director, CommServe, CommCell, SnapProtect, ROMS, and CommValue, are trademarks or registered trademarks of Commvault Systems, Inc. All other third party brands, products, service names, trademarks, or registered service marks are the property of and used to identify the products or services of their respective owners. All specifications are subject to change without notice.
Close
Copyright © 2018 Commvault | All Rights Reserved. | Legal | Privacy Policy