{"id":20588,"date":"2018-08-07T10:29:00","date_gmt":"2018-08-07T08:29:00","guid":{"rendered":"https:\/\/hetzner.co.za\/help-centre\/?p=20588"},"modified":"2025-12-30T12:52:36","modified_gmt":"2025-12-30T10:52:36","slug":"meltdown-and-spectre-cpu-vulnerabilities","status":"publish","type":"post","link":"https:\/\/xneelo.co.za\/help-centre\/uncategorized\/meltdown-and-spectre-cpu-vulnerabilities\/","title":{"rendered":"Meltdown and Spectre CPU vulnerabilities"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">On 3 Jan 2018 security vulnerabilities were published regarding Intel and other processors, including those used in our servers, which could allow attackers to access sensitive data.<\/span><\/p>\n<p>Our system engineers are following developments carefully and will ensure that <strong>all shared Web Hosting servers and Managed Servers receive the relevant updates<\/strong>. No action is required by customers of these services.<\/p>\n<h2>Action required for Self-Managed Servers<\/h2>\n<p><span style=\"font-weight: 400;\">As the vulnerabilities can\u2019t be fixed on the hardware level, OS developers are updating their operating systems to work around the error. For this reason, <\/span><b>all customers with Self-Managed servers will need to patch the relevant OS on their server.<\/b><\/p>\n<p><span style=\"font-weight: 400;\">The vulnerabilities include 3 variants or attack vectors, and are known as <\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\"><a href=\"https:\/\/spectreattack.com\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">Spectre<\/span><\/a><span style=\"font-weight: 400;\"> (variants 1 and 2)<\/span><\/li>\n<li style=\"font-weight: 400;\"><a href=\"https:\/\/meltdownattack.com\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\">Meltdown<\/span><\/a><span style=\"font-weight: 400;\"> (variant 3)<\/span><\/li>\n<\/ul>\n<h2><span id=\"Software_.2F_Operating_System\" class=\"mw-headline\">Operating System patches<\/span><\/h2>\n<p>Refer to the relevant Security Advisory for your Operating System<\/p>\n<h3><span id=\"Debian\" class=\"mw-headline\">Debian<\/span><\/h3>\n<ul>\n<li>Security Advisory\n<ul>\n<li><a class=\"external free\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5715\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5715<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5753\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5753<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5754\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5754<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3><span id=\"Ubuntu\" class=\"mw-headline\">Ubuntu<\/span><\/h3>\n<p><b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/wiki.ubuntu.com\/SecurityTeam\/KnowledgeBase\/SpectreAndMeltdown\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/wiki.ubuntu.com\/SecurityTeam\/KnowledgeBase\/SpectreAndMeltdown<\/a><\/p>\n<ul>\n<li>Security Advisory\n<ul>\n<li><a class=\"external free\" href=\"https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5715.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5715.html<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5753.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5753.html<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5754.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5754.html<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3><span id=\"RedHat_.2F_CentOS\" class=\"mw-headline\">RedHat \/ CentOS<\/span><\/h3>\n<p><b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/access.redhat.com\/security\/vulnerabilities\/speculativeexecution\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/access.redhat.com\/security\/vulnerabilities\/speculativeexecution<\/a><\/p>\n<ul>\n<li>Security Advisory\n<ul>\n<li><a class=\"external free\" href=\"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5715\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5715<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5753\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5753<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5754\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5754<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3><span id=\"OpenSUSE\" class=\"mw-headline\">OpenSUSE<\/span><\/h3>\n<p><b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/lists.opensuse.org\/opensuse-security-announce\/2018-01\/msg00001.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/lists.opensuse.org\/opensuse-security-announce\/2018-01\/msg00001.html<\/a><\/p>\n<ul>\n<li>Security Advisory\n<ul>\n<li><a class=\"external free\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2017-5715\/\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/www.suse.com\/security\/cve\/CVE-2017-5715\/<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2017-5753\/\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/www.suse.com\/security\/cve\/CVE-2017-5753\/<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2017-5754\/\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/www.suse.com\/security\/cve\/CVE-2017-5754\/<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3><span id=\"Archlinux\" class=\"mw-headline\">Archlinux<\/span><\/h3>\n<ul>\n<li>Security Advisory\n<ul>\n<li><a class=\"external free\" href=\"https:\/\/security.archlinux.org\/CVE-2017-5715\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security.archlinux.org\/CVE-2017-5715<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/security.archlinux.org\/CVE-2017-5753\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security.archlinux.org\/CVE-2017-5753<\/a><\/li>\n<li><a class=\"external free\" href=\"https:\/\/security.archlinux.org\/CVE-2017-5754\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security.archlinux.org\/CVE-2017-5754<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3><span id=\"Microsoft_Windows\" class=\"mw-headline\">Microsoft Windows<\/span><\/h3>\n<p><b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\/windows-server-guidance-to-protect-against-the-speculative-execution-s\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/support.microsoft.com\/en-us\/help\/4072698\/windows-server-guidance-to-protect-against-the-speculative-execution-s<\/a><\/p>\n<ul>\n<li>Security Advisory\n<ul>\n<li><a class=\"external free\" href=\"https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/adv180002\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/adv180002<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n","protected":false,"plain":"<span >On 3 Jan 2018 security vulnerabilities were published regarding Intel and other processors, including those used in our servers, which could allow attackers to access sensitive data.<\/span>\r\n\r\nOur system engineers are following developments carefully and will ensure that <strong>all shared Web Hosting servers and Managed Servers receive the relevant updates<\/strong>. No action is required by customers of these services.\r\n<h2>Action required for Self-Managed Servers<\/h2>\r\n<span >As the vulnerabilities can\u2019t be fixed on the hardware level, OS developers are updating their operating systems to work around the error. For this reason, <\/span><b>all customers with Self-Managed servers will need to patch the relevant OS on their server.<\/b>\r\n\r\n<span >The vulnerabilities include 3 variants or attack vectors, and are known as <\/span>\r\n<ul>\r\n \t<li ><a href=\"https:\/\/spectreattack.com\/\" target=\"_blank\" rel=\"noopener\"><span >Spectre<\/span><\/a><span > (variants 1 and 2)<\/span><\/li>\r\n \t<li ><a href=\"https:\/\/meltdownattack.com\/\" target=\"_blank\" rel=\"noopener\"><span >Meltdown<\/span><\/a><span > (variant 3)<\/span><\/li>\r\n<\/ul>\r\n<h2><span id=\"Software_.2F_Operating_System\" class=\"mw-headline\">Operating System patches<\/span><\/h2>\r\nRefer to the relevant Security Advisory for your Operating System\r\n<h3><span id=\"Debian\" class=\"mw-headline\">Debian<\/span><\/h3>\r\n<ul>\r\n \t<li>Security Advisory\r\n<ul>\r\n \t<li><a class=\"external free\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5715\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5715<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5753\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5753<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5754\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security-tracker.debian.org\/tracker\/CVE-2017-5754<\/a><\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>\r\n<h3><span id=\"Ubuntu\" class=\"mw-headline\">Ubuntu<\/span><\/h3>\r\n<b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/wiki.ubuntu.com\/SecurityTeam\/KnowledgeBase\/SpectreAndMeltdown\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/wiki.ubuntu.com\/SecurityTeam\/KnowledgeBase\/SpectreAndMeltdown<\/a>\r\n<ul>\r\n \t<li>Security Advisory\r\n<ul>\r\n \t<li><a class=\"external free\" href=\"https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5715.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5715.html<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5753.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5753.html<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5754.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/people.canonical.com\/~ubuntu-security\/cve\/2017\/CVE-2017-5754.html<\/a><\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>\r\n<h3><span id=\"RedHat_.2F_CentOS\" class=\"mw-headline\">RedHat \/ CentOS<\/span><\/h3>\r\n<b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/access.redhat.com\/security\/vulnerabilities\/speculativeexecution\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/access.redhat.com\/security\/vulnerabilities\/speculativeexecution<\/a>\r\n<ul>\r\n \t<li>Security Advisory\r\n<ul>\r\n \t<li><a class=\"external free\" href=\"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5715\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5715<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5753\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5753<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5754\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/bugzilla.redhat.com\/show_bug.cgi?id=CVE-2017-5754<\/a><\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>\r\n<h3><span id=\"OpenSUSE\" class=\"mw-headline\">OpenSUSE<\/span><\/h3>\r\n<b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/lists.opensuse.org\/opensuse-security-announce\/2018-01\/msg00001.html\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/lists.opensuse.org\/opensuse-security-announce\/2018-01\/msg00001.html<\/a>\r\n<ul>\r\n \t<li>Security Advisory\r\n<ul>\r\n \t<li><a class=\"external free\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2017-5715\/\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/www.suse.com\/security\/cve\/CVE-2017-5715\/<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2017-5753\/\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/www.suse.com\/security\/cve\/CVE-2017-5753\/<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2017-5754\/\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/www.suse.com\/security\/cve\/CVE-2017-5754\/<\/a><\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>\r\n<h3><span id=\"Archlinux\" class=\"mw-headline\">Archlinux<\/span><\/h3>\r\n<ul>\r\n \t<li>Security Advisory\r\n<ul>\r\n \t<li><a class=\"external free\" href=\"https:\/\/security.archlinux.org\/CVE-2017-5715\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security.archlinux.org\/CVE-2017-5715<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/security.archlinux.org\/CVE-2017-5753\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security.archlinux.org\/CVE-2017-5753<\/a><\/li>\r\n \t<li><a class=\"external free\" href=\"https:\/\/security.archlinux.org\/CVE-2017-5754\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/security.archlinux.org\/CVE-2017-5754<\/a><\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>\r\n<h3><span id=\"Microsoft_Windows\" class=\"mw-headline\">Microsoft Windows<\/span><\/h3>\r\n<b>Announcement<\/b>:\u00a0<a class=\"external free\" href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\/windows-server-guidance-to-protect-against-the-speculative-execution-s\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/support.microsoft.com\/en-us\/help\/4072698\/windows-server-guidance-to-protect-against-the-speculative-execution-s<\/a>\r\n<ul>\r\n \t<li>Security Advisory\r\n<ul>\r\n \t<li><a class=\"external free\" href=\"https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/adv180002\" rel=\"nofollow noopener\" target=\"_blank\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/adv180002<\/a><\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>"},"excerpt":{"rendered":"<p>The Meltdown and Spectre CPU vulnerabilities can\u2019t be fixed on the hardware level and Self-Managed customers need to patch the relevant OS on their server.<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"lsx_disable_title":"0","_relevanssi_hide_post":"on","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"Relevanssi index exclude","footnotes":""},"categories":[1],"tags":[],"topics":[],"class_list":["post-20588","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"additional_meta":{"category_title":[{"term_id":1,"name":"Uncategorized","slug":"uncategorized","term_group":0,"term_taxonomy_id":1,"taxonomy":"category","description":"","parent":0,"count":7,"filter":"raw","term_order":"109","cat_ID":1,"category_count":7,"category_description":"","cat_name":"Uncategorized","category_nicename":"uncategorized","category_parent":0}],"tag_title":false},"featured_image_src":null,"author_info":{"display_name":"marketing","author_link":"https:\/\/xneelo.co.za\/help-centre\/author\/marketing\/","author_avatar":"https:\/\/secure.gravatar.com\/avatar\/a6ea315e112423b2b955cb020fbce2b0835956c6ad85ff0f13f1db298977eaaa?s=96&d=mm&r=g"},"_links":{"self":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/posts\/20588","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/comments?post=20588"}],"version-history":[{"count":0,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/posts\/20588\/revisions"}],"wp:attachment":[{"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/media?parent=20588"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/categories?post=20588"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/tags?post=20588"},{"taxonomy":"topics","embeddable":true,"href":"https:\/\/xneelo.co.za\/help-centre\/wp-json\/wp\/v2\/topics?post=20588"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}