K2 Software and Meltdown/Spectre Vulnerabilities

  • 16 February 2021
  • 0 replies
  • 4 views

Badge +4
  • Nintex Employee
  • 6 replies
 

K2 Software and Meltdown/Spectre Vulnerabilities

KBS100054

PRODUCT
K2 Cloud
K2 Five
K2 blackpearl
K2 smartforms
K2 connect
K2.net 2003
SEE ALSO
 

https://help.k2.com/support-services/kb002127

TAGS
Security
This article was created in response to a support issue logged with K2. The content may include typographical errors and may be revised at any time without notice. This article is not considered official documentation for K2 software and is provided "as is" with no warranties.

Issue

Recently, there has been a great deal of discussion about the Meltdown and Spectre vulnerabilities. These vulnerabilities affect a wide range of CPUs, spanning many different operating systems. Some additional information: https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html

Symptoms

 These vulnerabilities affect a wide range of CPUs, spanning many different operating systems.

Resolution

In light of the recent Meltdown and Spectre vulnerabilities, K2 Support can verify the following statement regarding K2 software:

 

The Meltdown and Spectre vulnerabilities allow exposure of data at kernel memory level. K2 software relies on the underlying operating system to handle this level of memory access. As such, no K2 software fixes exist to address these vulnerabilities. Please be sure to patch your operating systems and firmware accordingly.


0 replies

Be the first to reply!

Reply