<p>All Linux images received significant work on the bootup speed:</p>
<ul>
<li>The platform got a better performing Metadata Service (MDS)</li>
<li>The network start scripts were tuned (wait times, waiting for mds, ...)</li>
<li>cloud-init > 0.7.6 received a patch removing unnecessary retries on 404</li>
<li>The generation of an optimized initrd on the kiwi built images was pushed into the background</li>
</ul>
<p>Updated SUSE images provided on 2018-02-15. Major changes over previous versions:</p>
<ul>
<li>The SUSE images now use the retpoline approach to mitigate Spectre V2 (CVE-2017-5715):
<ul>
<li>This results in a much lower performance impact compared to full IBC, see
<a href="https://imagefactory.otc.t-systems.com/Blog-Review/SpecExLeak/Benchmarks.html">https://imagefactory.otc.t-systems.com/Blog-Review/SpecExLeak/Benchmarks.html</a></li>
<li>It is available also for CPUs without (stable) microcode support for IBC.</li>
<li>Minimal IBC (IBPB) is used on Broadwell and newer CPUs to make it fully secure.</li>
<li>The 4.4 kernels from openSUSE42.3 and SLES12SP3 and SP2 were delivered in early
February, the kernels for SLES12SP1 and SLES11SP4 in the last week of Feb.</li>
</ul></li>
</ul>
<p>Updated Debian images provided on 2018-02-23. Major changes over previous versions:</p>
<ul>
<li>
<p>Debian-9</p>
<ul>
<li>
<p>Security fix for Spectre V1 (CVE-2017-5753) and Spectre V2 (CVE-2017-5715)</p>
<blockquote>
<p><code>new version Debian 4.9.82-1+deb9u2</code></p>
</blockquote>
</li>
</ul>
</li>
</ul>
<p>Updated Windows images provided on 2018-02-16. Major changes over previous versions:</p>
<ul>
<li>
<p>OTC Windows Self-Managed - Release 2018-02-14-0</p>
</li>
<li>
<p>image disk size now 40GB for all images</p>
</li>
<li>
<p>added February 2018 MS Patches</p>
</li>
<li>
<p>Windows Server 2008 R2</p>
<ul>
<li>Windows Malicious Software Removal Tool x64 - February 2018 (KB890830)</li>
<li>2018-02 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 on Windows 7 and Server 2008 R2 for x64 (KB4076492)</li>
<li>Cumulative Security Update for Internet Explorer 11 for Windows Server 2008 R2 for x64-based Systems (KB4074736)</li>
<li>2018-02 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB4074587)</li>
<li>2018-02 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB4074598) )</li>
</ul>
</li>
<li>
<p>Windows Server 2012 R2</p>
<ul>
<li>Windows Malicious Software Removal Tool x64 - February 2018 (KB890830)</li>
<li>Cumulative Security Update for Internet Explorer 11 for Windows Server 2012 R2 (KB4074736)</li>
<li>2018-02 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB4074594)</li>
<li>2018-02 Security Only Quality Update for Windows Server 2012 R2 for x64-based Systems (KB4074597)</li>
</ul>
</li>
<li>
<p>Windows Server 2016</p>
<ul>
<li>Update for Windows Defender antimalware platform - KB4052623 (Version 4.12.17007.18011)</li>
<li>Windows Malicious Software Removal Tool x64 - February 2018 (KB890830)</li>
<li>2018-02 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4074590)</li>
</ul>
</li>
<li>
<p>Included driver and tools:</p>
<ul>
<li>XEN GPL driver: 3.0.144.590 (unchanged)</li>
<li>KVM UVP Vmtools: 2.5.0.102 (unchanged)</li>
<li>Intel SRIOV (High Performance ) driver : Version 22.0, January 27, 2017 (unchanged)</li>
<li>NVIDIA vGPU driver: 369.71 (unchanged)</li>
<li>NVIDIA pGPU driver: 390.65 (new)</li>
<li>Cloudbase-Init: 9.12 (unchanged)</li>
</ul>
</li>
</ul>
Telekom Logo
Brand Claim