Spectre and Meltdown Vulnerabilities - Web and Email Appliances v8.4 or 8.5
- Article Number: 000015000
- Products: Forcepoint V10000 Appliance, Forcepoint V20000 Appliance, Forcepoint V5000 Appliance, Forcepoint Virtual Appliance, Forcepoint X Series Appliance
- Version: 8.5, 8.4, 8.3
- Last Published Date: July 18, 2018
Notes & Warnings
Hotfix 200 must be uninstalled before the appliance is upgraded to v8.4 or v8.5. Once the upgrade is complete, Hotfix 200 must be reinstalled.
KB article #14933 provides a description of the Meltdown and Spectre Vulnerabilities CVE-2017-5715, CVE-2017-5753, CVE-2017-5754.
This article provides additional information specific to the Forcepoint Web and Email Appliances.
The following Forcepoint V and X Series Web and Email Appliance models are affected:
To fix these vulnerabilities, perform both of the following tasks, in any order, on all V Series appliances, X Series appliances, and virtual appliances running versions 8.3.0, 8.4.0, and 8.5.0:
Apply HotfixThe hotfix mitigates CVE-2017-5753 and CVE-2017-5754 by updating the kernel. Follow the steps below to apply the hotfix to V Series appliances, X Series appliances and virtual appliances.
Note Versions 8.2 and below will not receive hotfixes.
Note: When using the "--id" parameter, enter the hotfix ID using capital letters.
The BIOS update mitigates CVE-2017-5715.
Also see: Determining your Appliance Model