You may have heard recently about two large hardware vulnerabilities called Meltdown and Spectre which have sent the IT industry scrambling to take corrective actions. Magento Commerce takes these vulnerabilities seriously and intends to ensure our cloud infrastructure is protected. To that end, we are planning to deploy patches over the next few days to remedy this situation.
We’ll be applying these updates in the following maintenance windows, starting today (01/04/2018) at 10pm PST.
Potential impact to your environments
We’ll start the patching with the Integration environments and the Starter production environments first as they are more susceptible to potential malicious code given they run on shared servers. This will be followed by Pro customers’ production servers, as they are isolated for each customer, which reduces the security risk significantly.
We highly recommend that you ensure that your teams are not conducting any critical operations in the affected environments during these maintenance windows. If unavoidable, please keep work to a minimum and notify Magento support in advance.
As a reminder, you can reach support through our support portal.