[BigFix-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Patches for Windows'

autonotify at us.ibm.com autonotify at us.ibm.com
Sat Jan 6 02:06:37 PST 2018 

Fixlet Site - 'Patches for Windows'
Current Version: 2903	Published: Fri, 05 Jan 2018 23:09:13  GMT

New Fixlets:
============

***************************************************************
Title: 4072698: Enable mitigations to help protect against speculative execution side-channel vulnerabilities - Windows Server 2008 / Windows Server 2008 R2 / Windows Server 2012 / Windows Server 2012 R2 / Windows 2016
Severity: Unspecified
Fixlet ID: 407269801
Fixlet Link: https://support.microsoft.com/kb/4072698

Fixlet Description: Customers need to enable mitigations to help protect against speculative execution side-channel vulnerabilities. Enabling these mitigations may affect performance. The actual performance impact will depend on multiple factors, such as the specific chipset in your physical host and the workloads that are running. Microsoft recommends that customers assess the performance impact for their environment and make necessary adjustments. Your server is at increased risk if it is in one of the following categories:  Hyper-V hosts Remote Desktop Services Hosts (RDSH) For physical hosts or virtual machines that are running untrusted code such as containers or untrusted extensions for database, untrusted web content or workloads that run code that is provided from external sources.

***************************************************************
Title: 4072698: Disable mitigations to help protect against speculative execution side-channel vulnerabilities - Windows Server 2008 / Windows Server 2008 R2 / Windows Server 2012 / Windows Server 2012 R2 / Windows 2016
Severity: Unspecified
Fixlet ID: 407269803
Fixlet Link: https://support.microsoft.com/kb/4072698

Fixlet Description: Customers need to enable mitigations to help protect against speculative execution side-channel vulnerabilities. Enabling these mitigations may affect performance. The actual performance impact will depend on multiple factors, such as the specific chipset in your physical host and the workloads that are running. Microsoft recommends that customers assess the performance impact for their environment and make necessary adjustments. Your server is at increased risk if it is in one of the following categories:  Hyper-V hosts Remote Desktop Services Hosts (RDSH) For physical hosts or virtual machines that are running untrusted code such as containers or untrusted extensions for database, untrusted web content or workloads that run code that is provided from external sources.

More information about the BigFix-Announcements mailing list