Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 27 Current »

This Wiki page contains the latest available information for this vulnerability. Please check back here regularly for updates. 

Last update:  


 

Table of Contents

Summary

Ribbon is aware of recently disclosed research regarding side-channel attacks using speculative execution performance optimization in most modern processors (CPUs). These side channel attacks, recently branded as “Meltdown” and “Spectre”, provide a method for an attacker to observe contents of privileged memory, bypassing any expected privilege levels and security checks.

In early January of 2018, it was announced that researchers identified three attack variants (variants 1, 2 and 3) that can exploit vulnerable processors. On May 21st, it was publicly disclosed that researchers discovered two new variants (variants 3a and 4). The current summary of all publicly disclosed Spectre/Meltdown variants are as follows:

  • Variant 1: Bounds check bypass (CVE-2017-5753)
  • Variant 2: Branch target injection (CVE-2017-5715)
  • Variant 3: Rogue data cache load (CVE-2017-5754)
  • Variant 3a: Rogue system register read (CVE-2018-3640)
  • Variant 4: Speculative store bypass (CVE-2018-3639)

The Spectre attack refers to attack variant one and two, while Meltdown refers to variant three. Many media reports are simply classifying any new variants as Spectre Next Generation or Spectre-NG.

All three CVEs for the first publicly disclosed variants 1, 2 and 3 are rated in the National Vulnerability Database (NVD) as Medium risk with CVSSv2 scores of 4.7 (out of a possible 10). The two new CVEs for variants 3a and 4 are still being assessed in NVD for severity and CVSS score.

In order to exploit any of these vulnerabilities, an attacker must execute crafted code on an affected product. Ribbon products are closed systems which do not allow installation of any unauthorized software. Most Ribbon products and solutions are also deployed in private/trusted and managed networks, with other security access controls and defense-in-depth measures to help mitigate any risks of exploitation.

For customers with Ribbon products running in their own virtualization environment (versus a Ribbon closed/hosted virtualization environment), Ribbon encourages customers to assess the risks and impacts as necessary since these vulnerabilities may also allow a Virtual Machine (VM) instance to glean memory data from the host system (e.g. hypervisor) and other VM instances (tenants/guests).

Ribbon Analysis and Investigation

Ribbon is currently assessing the impacts of these vulnerabilities across its product portfolio and actively following security updates from OS (e.g. RedHat, etc.), processor and virtualization providers as they become available.

Industry analysis regarding these security updates indicate that the updates will most likely introduce significant performance penalties (possibly as high as 30%) once applied to products. As such, Ribbon is proceeding prudently with executing in-house capacity benchmark testing in order to quantify the trade-offs between resolution of these vulnerabilities and product performance. Ribbon will communicate these results appropriately via standard product documentation as fixes become available.

 

 Click here to view historical updates...

 Update:

Resolutions of Spectre Variant 1 and Meltdown Variant 3 vulnerabilities are now available from most OS vendors (with some OS flavors only having provided resolution for one or the other to date). Given broader industry adoption Ribbon now has increased confidence in the stability of the code updates that are included in these resolutions. As such we are now able to provide patch and/or release update timing for most of our products for Variants 1 and 3. Ribbon continues to perform regression testing and load/capacity benchmarking with these code updates included and in general are forecasting a 2% to 6% decrease/impact to product capacities. Further details on per product impacts will be made available with the patch or updated release information.

Timing for resolution of the Spectre Variant 2 vulnerability is not yet available for most Ribbon products. Intel only recently released its microcode updates to its flow through Hardware/BIOS vendors that are still working to deliver these updates to vendors such as Ribbon. Once updated BIOS/ Firmware is available to Ribbon we will develop regression and load/capacity benchmarking programs along with rollout strategies. Note that resolution of Variant 2 is expected to have greater impacts to product capacities/real-time however the exact range of these impacts is still to be determined. Indications are that some OS vendors are partially mitigating those impacts with software (RetPoline approach).

 Update:

Ribbon is currently assessing the resolutions for the new Spectre variants 3a and 4 as they become available from OS vendors and Intel/Hardware platform vendors. Some OS vendors have software based mitigations (patches) available for variant 4, while the mitigation for variant 3a requires a microcode update. A microcode based mitigation will also be supported for variant 4, however, Intel and OS vendors are not recommending it be enabled in most deployments due to the performance impacts versus any additional mitigation benefits.

Resolution plans and timing for the variants 3a and 4 will be updated in this bulletin as they become available.


Ribbon Products Impacted by Meltdown and Spectre Vulnerability

Products Impacted

Table : fSonus and fGENBAND Products Impacted by Meltdown and Spectre Vulnerability

No.Product NameFormer Sonus / GENBANDRelease / Version
(Solution Release)
Spectre / Variant 1
(Date & Release)
Spectre / Variant 2
(Date & Release)
Meltdown / Variant 3
(Date & Release)
Comments
1Application Server (AS)GENBAND11.2 (C20 R18)

June 2018

 

June 2018

 
2Application Server (AS)GENBAND12.0 (C20 R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 12.1
3Application Server (AS)GENBAND12.1 (C20 R19)

June 2018

MCP-19.0.20.6 PB

 

June 2018

MCP-19.0.20.6 PB

 
4C3 Gateway ControllerGENBAND17

April 2018

ERSD Image

 

April 2018

ERSD Image

OS Update via Emergency Recovery SD Card image
5C3 Gateway ControllerGENBAND18

April 2018

ERSD Image

 

April 2018

ERSD Image

OS Update via Emergency Recovery SD Card image
6C3 Gateway ControllerGENBAND19.1

April 2018

ERSD Image

 

April 2018

ERSD Image

OS Update via Emergency Recovery SD Card image
7C15 Compact Softswitch (Call History Server)GENBANDAll

June 2018

RHEL 6.9

 

June 2018

RHEL 6.9

Ready to deploy
8C20 Converged Softswitch (GWC, GVM, SST, CA)GENBANDR18

Nov. 2018

R20

 

Nov. 2018

R20

Upgrade to C20 R20
9C20 Converged Softswitch (GWC, GVM, SST, CA)GENBANDR19

Nov. 2018

R20

 

Nov. 2018

R20

Upgrade to C20 R20
10GENView ManagerGENBAND2 (C20 R18)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
11GENView ManagerGENBAND4 (C20 R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
12GENView - AnalyticsGENBAND1

April 2018

Patch via VHE/AVE Update

 

April 2018

Patch via VHE/AVE Update

 
13GENView - AnalyticsGENBAND2

April 2018

Patch via VHE/AVE Update

 

April 2018

Patch via VHE/AVE Update

 
14G6 Management Module (G6MM)GENBANDG6MM for GVM 2.0 BRC (C20 R18)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
15G6 Management Module (G6MM)GENBANDG6MM -13.1 (C20 R18 & R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
16G6 Management Module (G6MM)GENBANDG6MM for GVM 2.0 (C20 R18 & R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
17G6 Management Module (G6MM)GENBANDG6MM for GVM4.0 (C20 R18 & R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
18General Media ServerGENBAND1.4.2.x (C20 R18 & R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to R10.x
19General Media ServerGENBAND1.7.1.x (C20 R18 & R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to R10.x
20General Media Server - C20GENBAND10.0.10.X (C20 R18 & R19)

April 2018

Patch via VHE Update (Host only)

 

April 2018

Patch via VHE Update (Host only)

Guest OS updates will be coupled with the C20 R20 / GMS 12.1 Program
21General Media Server - ASGENBAND10.2.X(AS12.1)

July 2018

Patch via PLE4 / Guest OS

 

July 2018

Patch via PLE4 / Guest OS

 
22MEPGENBANDR1.6.1 (C20 R18)No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
23MEPGENBANDR1.6.1 (C20 R19)No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
24NSPGENBAND19 (C20 R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
25NSPGENBAND21 (C20 R19)

April 2018

Patch via VHE/AVE Update

 

April 2018

Patch via VHE/AVE Update

 
26Session Server Trunks (SST) HTGENBANDSST17-18 (C20 R18)No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
27Session Server Trunks (SST) MA RMSGENBANDR19 (C20 R18)

April 2018

Patch via VHE Update (Host only) 

No Resolution Planned

April 2018

Patch via VHE Update (Host only) 

Upgrade to C20 R20
28Session Server Trunks (SST) IA RMSGENBANDR19 (C20 R19)No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to C20 R20
29Signaling Platform 2000 (SP2000)GENBANDR3.0No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
30Converged Intelligent Messaging (CIM)GENBAND8.2No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9
31Converged Intelligent Messaging (CIM)GENBAND9

May 2018

9.0.2 MR

 

May 2018

9.0.2 MR

 
32Converged Intelligent Messaging (CIM) VNFGENBAND9.1

June 2018

9.1.2 MR

 

June 2018

9.1.2 MR

 
33G5 SIP Emergency Stand-Alone (ESA)GENBAND3

March 2018

3.0 MR

 

March 2018

3.0 MR

 
34Genview Billing - MediationGENBANDR4.0No Resolution PlannedNo Resolution PlannedNo Resolution PlannedMigrate to R6.0
35Genview Billing - MediationGENBANDR5.0No Resolution PlannedNo Resolution PlannedNo Resolution PlannedMigrate to R6.0
36GENView AssuranceGENBAND9.xNo Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 10.x
37GENView AssuranceGENBAND10.xSee CommentsSee CommentsSee CommentsProduct is application only in 10.x. Customer provides OS.
38GENView Manager - OneEMSGENBAND1.1

April 2018

Patch via VHE/AVE Update

 

April 2018

Patch via VHE/AVE Update

 
39GENView Manager - OneEMSGENBAND2

April 2018

Patch via VHE/AVE Update

 

April 2018

Patch via VHE/AVE Updatee

 
40Provisioning & PortalsGENBAND9.3No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
41Provisioning & PortalsGENBAND9.4

April 2018

Patch via VHE/AVE Update

 

April 2018

Patch via VHE/AVE Update

 
42Intelligent Messaging Manager (IMM)GENBAND4

July 2018

IMM 4.0 PBx

 

July 2018

IMM 4.0 PBx

 
43SBC (Q10, Q20, Q21)GENBAND9.1No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
44SBC (Q10, Q20, Q21)GENBAND9.2No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
45SBC (Q10, Q20, Q21)GENBAND9.3No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
46SBC (Q10, Q20, Q21)GENBAND10No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
47GENView Real-Time Session Manager (RSM)GENBAND9.1No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
48GENView Real-Time Session Manager (RSM)GENBAND9.2No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
49GENView Real-Time Session Manager (RSM)GENBAND9.3No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 9.4
50QFlex eSBCGENBAND6No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
51Qflex EMSGENBAND6No Resolution PlannedNo Resolution PlannedNo Resolution Planned 
52SPiDRGENBAND4.1No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 4.5 (Q2 2018)
53SPiDRGENBAND4.3No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 4.5 (Q2 2018)
54Kandy Link / SPiDRGENBAND4.4No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 4.5 (Q2 2018)
55VNF Manager (VNFM)GENBAND17.4No Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to Cavalli (March 2018 GA)
56Activation Server (AcS)SonusAll

May 2018

11.0.1

 

May 2018

11.0.1

 
57Access Directory Server (ADS)Sonus9.0.8 8.4.18No Resolution PlannedNo Resolution PlannedNo Resolution PlannedProduct EOL
58ASX Access Server (Lintel)Sonus9.0.8 8.4.18No Resolution PlannedNo Resolution PlannedNo Resolution PlannedProduct EOL
59DSC 8000 (SEGway X511)SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
60DSC SWeSonusAll

May 2018

R17.0

 

May 2018

R17.0

 
61DataStream Integrator (DSI)Sonus9.3.0

July 2018

9.3.0R0P6

 

July 2018

9.3.0R0P6

 
62Element Management System (EMS) - IASSonus10.0.xNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
63Element Management System (EMS)Sonus10.1.xNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
64Element Management System (EMS)Sonus10.2.xNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
65Element Management System (EMS)Sonus10.3.x   Patch back after 11 is complete
66Element Management System (EMS)Sonus11

May 2018

11.0

 

May 2018

11.0

 
67HA CDRSonusAll    
68Home Subscriber Database (HSDB)SonusAll    
69Interworking Server (IWS)SonusAll    
70Multimedia Communications Server (MMCS)SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
71Multimedia Session Manager (MMSM)SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
72Media Capture Tool (MCT) on LinuxSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
73NetScoreSonusAll

May 2018

11.0

 

May 2018

11.0

 
74Promina NX-PSMSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
75Promina NX-IPTRKSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
76PSX (Linux)SonusAll

May 2018

11.0

 

May 2018

11.0

 
77SBC Core (51x0/52x0/7000/SWe)SonusAll7.1 7.1Fix in 7.1 and patch back to 7.0.x & 6.2.x
78SBC Edge (1000/2000) - with ASM optionSonusAll

Jan. 2018

January ASM Roll-Up

 

Jan. 2018

January ASM Roll-Up

 
79SBC SWe LiteSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution PlannedUpgrade to 8.0.0
80SEGway X401eSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
81SEGway X301SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
82SEGway X211SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
83Service Centralization and Continuity Application Server (SCC-AS)SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
84Session Director (SD)SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
85SGX 4000 (Linux - 4250)SonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution Planned 
86SGX 4000 (Linux - HP G8)SonusAll

May 2018

10.0.5R0

 

May 2018

10.0.5R0

 
87Sonus Mobile Client [Downloadable Client (DLC)] – WI-FI CallingSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution PlannedDependent on Client OS & handset
88Sonus Mobile Client [Downloadable Client (DLC)] – LTE CallingSonusAllNo Resolution PlannedNo Resolution PlannedNo Resolution PlannedDependent on Client OS & handset
89VX Series Voice SwitchesSonusAll

Q4 2018

5.2

 

Q4 2018

5.2

 
90WebRTCSonus1.2.0 1.3.0No Resolution PlannedNo Resolution PlannedNo Resolution PlannedProduct EOL
 

Products Not Impacted

Table : Products Not Impacted

Product NameFormer Sonus / GENBAND / Third-Party
C15 Compact SoftswitchGENBAND
CS2000 / C20 Converged Softswitch - Call AgentGENBAND
G5 Line Access GatewayGENBAND
G6 Universal GatewayGENBAND
G9 Converged GatewayGENBAND
Gateway Controller (905)GENBAND
GSX4000Sonus
GSX9000Sonus
Promina NX1000Sonus
Promina netMSSonus
SBC 1000 (without ASM)Sonus
SBC 2000 (without ASM)Sonus
SBC Core (51x0/52x0/7000) Baseboard Management Controller (BMC)Sonus
Sonus Mobile Client [Downloadable Client (DLC)] – WI-FI CallingSonus
Sonus Mobile Client [Downloadable Client (DLC)] – LTE CallingSonus
T7000 Intellligent Switching SystemSonus
Tenor Series VoIP GatewaysSonus
HP server platform ILOThird-Party
IBM STORAGE RAID DS3524Third-Party
IBM StorWize RAID V3700Third-Party
Oracle Sun Netra platform ILOThird-Party
Sun Storage Tek 2540 RAID Storage ArrayThird-Party
SecureLink Gatekeeper - VM-based serviceThird-Party


 
 Click here to view Table 1 change history...

Table 1 Change History:

  •  : Added Admin Portal (AP) and TCS Convergence Server to table 1
  •  : Changed "SecureLink Gatekeeper - Standalone physical server" to Impacted, and added recommendation to switch to virtual gatekeeper.
  •  : Changed "IBM STORAGE RAID DS3524" and "IBM StorWize RAID V3700" to Not Impacted.
  •  : Changed "Promina NX-PSM" and "Promina NX-IPTRK" status to "No update is planned".
  •  : Added "5400" to the two SBC Core rows.
  •  : Combined fSonus and fGENBAND tables; added additional details.
  •  :
    • Added numbered column.
    • Added "GVM, SST, CA" to and removed "ATCA & MA-RMS" from C20 Converged Softswitch (line 8)
    • Added "GVM, SST, CA" to and removed "ATCA" from C20 Converged Softswitch" from C20 Converged Softswitch (line 9)
    • Changed NSP release to 21 (line 25).
    • Added "MA RMS" to SST (line 27). Also changed release to R19; updated "Spectre / Variant 2" and "Meltdown / Variant 3" fields to reflect: "April 2018, Patch via VHE Update (Host only)"
    • Added "IA RMS" to SST (line 28).
    • Changed release date of "Spectre / Variant 1" and "Meltdown / Variant 3" for DSI (line 61) to July 2018.
  •  : Adjusted AS Variant 1 and Variant 3 dates and removed release version information to allow for further investigation. (line 1)
  •  : Changed Variant 1 and 3 date to June, 2018 with a comment of "Ready to deploy" for C15 Compact Softswitch (Call History Server). (line 7)

Table 2 Change History:

  •  : Added table 2.

References

Further information is also available on the following sites:

For customers running AWS, please refer to https://aws.amazon.com/security/security-bulletins/AWS-2018-013/.

 

 Click here to view References change history...

Change History

  •  : Added reference link for AWS customers.


  • No labels