Category: SUSE Linux Enterprise Live Patching

Today, the security community and industry vendors revealed information about a hardware security vulnerability called “L1 Terminal fault”. Very similar to Meltdown in its nature, the vulnerability is sensitive to a side-channel-attack during speculative execution, and may lead to the disclosure of otherwise protected data. While a full resolution can only be provided on the […]

Read More

Did you miss out on SAP SAPPHIRE? Did you attend but not make it to the SUSE booth? The SUSE booth was HOT this year—here’s the low-down on everything you missed. While planning for SAPPHIRE, we wanted to demonstrate the close relationship we have with SAP and our partners.  As you may already know, SUSE […]

Read More

Now that everything has been set to go as described in Part 1 (Key technical obstacles for Live Patching Meltdown), Part 2 (Virtual address mappings and the Meltdown vulnerability)  and Part 3 (Changes needed for Translation Lookaside Buffer (TLB) flushing primitives), the last missing piece is to actually replace the entry code and make it […]

Read More

Building upon the Part 1 (Key technical obstacles for Live Patching Meltdown) and the Part 2 (Virtual address mappings and the Meltdown vulnerability), let’s now address the needed changes to the TLB flushing primitives. In order to resolve virtual to physical addresses, a CPU must traverse the page table tree. This is a costly thing to […]

Read More

Following up on the Part 1 about key technical obstacles for Live Patching Meltdown, in this blog I will give you some background on virtual address mappings in context of the Meltdown vulnerability and look at patching kGraft itself! Virtually mapped memory is a protection feature provided by the CPU, orthogonal to the privilege separation […]

Read More

Meltdown is one of the biggest and complex security vulnerabilities that happened recently and impacted almost everyone. I am a SUSE live patching engineer and wanted to share with you how unique fixing this vulnerability was in terms of scope and complexity. My goal was to see if I could also create a live patch […]

Read More

For the nearly three years that I’ve been at SUSE, I’ve had the privilege of participating in five different IBM Systems Technical University events in Europe and the US. It’s always been a great opportunity not only to highlight the latest SUSE innovations available for the IBM Power platform but also to talk to IBMers, […]

Read More

When I first came to SUSE, our relationship with Fujitsu was on a more regional basis. We have a very close relationship with Fujitsu in Central Europe and I like to think it is because our companies hold the same values: both companies are committed to innovating products that are insanely reliable, both companies are […]

Read More

The best way to move forward with your digital transformation is partnering with those who have a track record of SAP HANA success. HPE and SUSE have a 25 years relationship—that’s longer than some Linux vendors have been in existence – and also closely work with SAP for decades. SUSE Linux is the only OS […]

Read More

All system outages are bad. They result in lost revenue, reputation damage, lost productivity and other impacts to the business. Outages of enterprise applications such as SAP HANA can have an even greater impact on a business due to the pervasive nature of those applications.  One reason you choose the IBM Power platform is the […]

Read More