This is a list of our recent news, newsletters, invitations and other e-mail messages to customers and partners.
## UPDATE 10th July 2018 ##
With the availability of LIMS 2018 we offer a new system update DVD with the latest Red Hat Enterprise Linux 7.5 with kernel and various CPU microcode fixes addressing the following Meltdown&Spectre vulnerabilities:
• CVE 2017-5753 Spectre Variant 1 - “Bounds Check bypass”
• CVE-2017-5715 Spectre Variant 2 - “Branch Target Injection”
• CVE-2017-5754 Meltdown Variant 3 - “Rogue Data Cache Load”
• CVE-2018-3639 Spectre Variant 4 - “Speculative Store Bypass”
Due to the nature of the vulnerabilities, fixes cannot be done as software alone, but require a new CPU instruction set (microcode). With the LIMS 2018 system update DVD the necessary microcode update will be loaded automatically when booting the system. However, we recommend to update the Dell server BIOS regularly, independant of any Spectre mitigation requirements.
The Spectre defense by the Red Hat Enterprise Linux 7 kernel utilizes combinations of software and hardware mitigations dependening on the CPU generation. As widely discussed and stated by Red Hat, these updates may degrade the overall performance of a server in a range of 10 to 20%. The exact figure highly depends on the kernel mitigation strategy for the CPU generation and the actual CPU utilization of the application. We noticed that LIMS DF processes and the LIAPS software are more affected than other LIMS modules (e.g. adminsys).
Customers with a valid support subscription can download the new updates on our download server.