Naji Almahmoud
By: Naji Almahmoud

October 9, 2018 4:40 pm

1,047 views

Michael Tabron
By: Michael Tabron

October 8, 2018 8:55 am

490 views

Jeff Reser
By: Jeff Reser

September 24, 2018 1:16 pm

957 views

Nonstop IT – Five Key Considerations to Get Started

Despite today’s technology, only a small fraction of businesses are truly able to satisfy customers, in large part because those businesses deliver nonstop services. Their mobile apps are fast and convenient and allow customers to do what they need to, anytime, anywhere. Their customer support systems are helpful and don’t slow […]

Read More


Michael Tabron
By: Michael Tabron

September 18, 2018 2:30 pm

2,458 views

Knut Trepte
By: Knut Trepte

August 14, 2018 11:00 am

21,810 views

SUSE addresses the “L1 Terminal Fault” issue

Today, the security community and industry vendors revealed information about a hardware security vulnerability called “L1 Terminal fault”. Very similar to Meltdown in its nature, the vulnerability is sensitive to a side-channel-attack during speculative execution, and may lead to the disclosure of otherwise protected data. While a full resolution can only […]

Read More


jacobperry
By: jacobperry

July 11, 2018 8:43 pm

2,089 views

Nicolai Stange
By: Nicolai Stange

May 7, 2018 1:54 pm

984 views

Live Patching Meltdown – SUSE Engineer’s research project (Part 4 – The Conclusion)

Now that everything has been set to go as described in Part 1 (Key technical obstacles for Live Patching Meltdown), Part 2 (Virtual address mappings and the Meltdown vulnerability)  and Part 3 (Changes needed for Translation Lookaside Buffer (TLB) flushing primitives), the last missing piece is to actually replace the entry code and make […]

Read More


Nicolai Stange
By: Nicolai Stange

May 4, 2018 12:20 pm

830 views

Live Patching Meltdown – SUSE Engineer’s research project (Part 3)

Building upon the Part 1 (Key technical obstacles for Live Patching Meltdown) and the Part 2 (Virtual address mappings and the Meltdown vulnerability), let's now address the needed changes to the TLB flushing primitives. In order to resolve virtual to physical addresses, a CPU must traverse the page table tree. This is a […]

Read More


Nicolai Stange
By: Nicolai Stange

May 3, 2018 11:59 am

875 views

Live Patching Meltdown – SUSE Engineer’s research project (Part 2)

Following up on the Part 1 about key technical obstacles for Live Patching Meltdown, in this blog I will give you some background on virtual address mappings in context of the Meltdown vulnerability and look at patching kGraft itself! Virtually mapped memory is a protection feature provided by the CPU, orthogonal to the privilege separation […]

Read More


Nicolai Stange
By: Nicolai Stange

May 2, 2018 2:37 pm

1,969 views

Live Patching Meltdown – SUSE Engineer’s research project (Part 1)

Meltdown is one of the biggest and complex security vulnerabilities that happened recently and impacted almost everyone. I am a SUSE live patching engineer and wanted to share with you how unique fixing this vulnerability was in terms of scope and complexity. My goal was to see if I could also create a live patch […]

Read More