Avatar photo
By: Nicolai Stange

May 4, 2018 12:20 pm

4,484 views

Live Patching Meltdown – SUSE Engineer’s research project (Part 3)

Building upon the Part 1 (Key technical obstacles for Live Patching Meltdown) and the Part 2 (Virtual address mappings and the Meltdown vulnerability), let's now address the needed changes to the TLB flushing primitives. In order to resolve virtual to physical addresses, a CPU must traverse the page table tree. This is a costly […]

Read More


Avatar photo
By: Nicolai Stange

May 2, 2018 2:37 pm

7,428 views

Live Patching Meltdown – SUSE Engineer’s research project (Part 1)

Meltdown is one of the biggest and complex security vulnerabilities that happened recently and impacted almost everyone. I am a SUSE live patching engineer and wanted to share with you how unique fixing this vulnerability was in terms of scope and complexity. My goal was to see if I could also create a live patch […]

Read More


Avatar photo
By: George Shi

November 18, 2014 3:26 pm

5,784 views

SUSE Linux Enterprise Live Patching is launched!

It’s always be fun at SUSECon.  And this year at SUSECon, we’re happy to announce a long-anticipated new offering: SUSE Linux Enterprise Live Patching. This offering is based on the kGraft project -- and can perform critical kernel patches without rebooting your server, maximizing your up-time and service availability.  Now you […]

Read More


Avatar photo
By: Bryan Lunduke

February 16, 2014 12:28 pm

4,947 views

Video demo: Live Linux Kernel Patching with kGraft

In the 2 weeks since we announced the existence of kGraft, there have been many questions about how this solution for live-patching the Linux kernel works. And because (moving) pictures often speak louder than words, here is a video of kGraft in action on the official SUSE YouTube channel.[…]

Read More


Avatar photo
By: Vojtěch Pavlík

January 31, 2014 7:49 am

67,822 views

kGraft: Live Kernel Patching

Editor's Note: kGraft is now known as Live Patching. It has many names - hot fixing, live patching, runtime patching, rebootless updates, concurrent updates.  It's a holy grail of uptime. It is longed for by scientists who really do not want to stop a simulation that has been running for the past few months […]

Read More