Linux vs. Zombieland v2: The security battle continues

Linux vs. Zombieland v2: The security battle continues 1

Here’s the bad news: We’re going to keep seeing fundamental Intel CPU security holes popping open until every last one of the current generations of these chips is in landfills. Zombieland v2 is only the latest of a line of problems, which go back to Meltdown and Spectre. The “good” news is for now Intel and the operating system companies are staying ahead of hackers. Here’s what Linux and Red Hat are doing about the latest nastiness. 

Also: See more IT security coverage

First, Zombieland v2 isn’t just a worry for people using older Intel processors. No, this shambler of a security hole can also be used against all recent Intel processors, including the latest and greatest Cascade Lake. 

Specifically, Zombieland v2 is made up of three problems: 

 When  exploited, these security holes enable attackers to gain read access to your data or to hang your system

These are Microarchitectural Data Sampling (MDS) attacks. To protect your systems, you must patch both your Intel CPU microcode update and operating system. Doing just one or the other isn’t enough.

Linux developers, as well as their counterparts at Apple and Microsoft, are ready with patches. From Red Hat, which tends to lead the way with Linux security, it’s the first one that’s the most troubling. It gives it a security ranking of important. 

Specifically, the Page Size Changer bug can be used by a privileged attacker inside a guest Virtual Machine (VM) to crash the CPU. This, in turn, can bring down the entire system. This is not what you want a VM on your servers, or worse still, your cloud, doing.

Just because the other two aren’t quite as bad doesn’t mean that you can neglect them. Both can be used to spy on other users or to crash systems. 

Unfortunately, while no one has done benchmarking yet, it’s a given that you’ll see performance hits. The first version of Zombieland slowed servers down by up to 40% on some workloads. 

Performance or security? It’s your choice, but I know which one I’d pick. To quote Red Hat: “Red Hat strongly suggests that users update all systems even if they do not believe their configuration poses a direct threat.” 

Patches are available for Red Hat Enterprise Linux (RHEL) via the Red Hat Customer Portal. You can find the patches need for Ubuntu at the Ubuntu Wiki Knowledge Base. For SUSE Linux Enterprise Server (SLES), see the SUSE Update Page.

So, what are you waiting for? For your data center servers to start going dark and your alarms to go off? Get patching. Now. 

Related Stories:

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews



bitcoin
Bitcoin (BTC) $ 61,135.00
ethereum
Ethereum (ETH) $ 4,086.43
binance-coin
Binance Coin (BNB) $ 482.02
tether
Tether (USDT) $ 1.00
cardano
Cardano (ADA) $ 2.15
solana
Solana (SOL) $ 194.75
xrp
XRP (XRP) $ 1.09
polkadot
Polkadot (DOT) $ 43.33
dogecoin
Dogecoin (DOGE) $ 0.248028
usd-coin
USD Coin (USDC) $ 1.00
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 61,135.00
ethereumEthereum (ETH)
$ 4,086.43
tetherTether (USDT)
$ 1.00
bitcoin-cashBitcoin Cash (BCH)
$ 623.33
litecoinLitecoin (LTC)
$ 195.17
bitcoinBitcoin (BTC)
52.501,21
ethereumEthereum (ETH)
3.509,32
tetherTether (USDT)
0,858775
bitcoin-cashBitcoin Cash (BCH)
535,30
litecoinLitecoin (LTC)
167,61
bitcoinBitcoin (BTC)
44,364.14
ethereumEthereum (ETH)
2,965.42
tetherTether (USDT)
0.725675
bitcoin-cashBitcoin Cash (BCH)
452.33
litecoinLitecoin (LTC)
141.63

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Behind The Scenes: How this Crypto Community Responded to + $50m Hack
October 18, 2021
Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021
Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021

Blockchain/Cryptocurrency Questions and Answers

ICo Presale
The Science Behind ICO Presales…
October 14, 2021
Beginner’s Guide to Investing in Cryptocurrency
August 9, 2021
Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin61,176 0.35 % 0.43 % 1.02 %
Ethereum4,096.3 0.31 % 2.79 % 5.42 %
Binance Coin482.68 0.33 % 0.49 % 1.39 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Cardano2.150 0.29 % 0.44 % 3.29 %
Solana195.85 0.82 % 0.20 % 20.17 %
XRP1.090 0.05 % 0.48 % 5.19 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
Dogecoin0.2486 0.42 % 0.08 % 5.76 %
USD Coin1.000 0.14 % 0.20 % 0.17 %

bitcoin
Bitcoin (BTC) $ 61,135.00
ethereum
Ethereum (ETH) $ 4,086.43
binance-coin
Binance Coin (BNB) $ 482.02
tether
Tether (USDT) $ 1.00
cardano
Cardano (ADA) $ 2.15
solana
Solana (SOL) $ 194.75
xrp
XRP (XRP) $ 1.09
polkadot
Polkadot (DOT) $ 43.33
dogecoin
Dogecoin (DOGE) $ 0.248028
usd-coin
USD Coin (USDC) $ 1.00