Okay, it is a hot topic now (if you don’t know, then nvm, it is not end of the world yet), and I am following this because all my clients’s servers are (likely) affected by this two **bugs**, unfortunately 😖

But, fixing all this so-called vulnerabilities is not an easy task. There are end-of-live software out there (even the upstream vendor might no longer produce any patch for this outdated software), and dependency issues need to be resolved as well. If the system is not patch-able, then probably a review of security policies/rules are needed (as the exploits have to run from the system locally and it is not easy really)… more firewalls? more user restrictions? more security monitoring? and yah we are in the age of cyber-disease now.

References:

https://meltdownattack.com

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr

https://www.intel.com/content/www/us/en/architecture-and-technology/facts-about-side-channel-analysis-and-intel-products.html

https://support.apple.com/en-us/HT208394

https://access.redhat.com/security/vulnerabilities/speculativeexecution