SAP Knowledge Base Article - Preview

2709955 - Processor-based vulnerabilities: patch progress by solution in SAP‘s cloud environments

Symptom

SAP takes the security of your SAP systems seriously, and we continue to work on solutions to address the vulnerabilities known as Meltdown and Spectre. We created this SAP Knowledge Base Article to give you an overview on the progress SAP is making regarding Meltdown and Spectre on SAP Cloud environments. This article covers customer-relevant SAP systems by solution area, and it will be updated regularly.

What are Meltdown and Spectre?

Meltdown and Spectre are security vulnerabilities that affect most of Intel x86 processors. The affected hardware and software vendors have been notified in July 2017. The  vulnerabilities became public on January 3, 2018.

These processors are widely used, including in SAP data centers. The vulnerabilities concern flaws in the CPU architecture, especially caching and speculative execution, as well as CPU features intended to boost performance. In the meantime, several additional processor-based vulnerabilities were discovered and published (see table).

These security vulnerabilities potentially allow attackers to read memory areas that they are not authorized to read, thereby obtaining potentially sensitive information.


Read more...

Keywords

KBA , XX-SER-BOSEC , AGS SEC Backoffice , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.