Fujitsu Enterprise Postgres news

April 2023

Fujitsu Limited to bring Fujitsu Enterprise Postgres to new IBM z16 and LinuxONE 4 single-frame and rack mount models

New IBM configurations are designed for flexibility, sustainability, and security within the data center

"We are excited to collaborate with IBM as the company unveils its new IBM z16 and LinuxONE Rockhopper 4 single-frame and rack mount models, available globally on May 17, 2023. Powered by the IBM Telum processor, these new configurations are designed for highly efficient data centers with sustainability in mind. This can help Fujitsu Enterprise Postgres clients make more effective use of their data center space while remaining resilient in the midst of ongoing global uncertainty."

Niki Kennedy – Senior Director, Data Management Software Business Unit, Fujitsu Limited

Fujitsu Enterprise Postgres 15 on IBM LinuxONE 4
Containerize, modernize, and automate with no vendor lock-in

Operating Fujitsu Enterprise Postgres on IBM LinuxOne 4 can be part of a hybrid multi-cloud solution that may help decrease carbon footprint by reducing compute demand while offering heightened security, performance, and operational flexibility.

Fujitsu believes that Fujitsu Enterprise Postgres is the most secure Postgres available on IBM LinuxONE 4, and now has multi-architecture operator certification, providing the portability and agility for a true secure Hybrid Multi-Cloud Postgres designed specifically for business-critical environments, backed by Fujitsu

Addressing today’s changing IT landscape

Every day, clients face challenges in delivering integrated digital services. According to IBM’s recent IBM Transformation Index report, security, managing complex environments, and regulatory compliance were cited as challenges to integrating workloads in a hybrid cloud. In today’s evolving IT landscape, it can be difficult for clients to meet business objectives while adhering to environmental regulations and increasing costs.

The IBM LinuxONE Rockhopper 4 new rack mount option is designed with the same reliability standards as all IBM z16 and LinuxONE 4 systems and is for client-owned data center racks and power distribution units. This footprint is architected to let companies co-locate the latest zSystem and LinuxONE technology with distributed infrastructure and opens opportunities to include storage, SAN, and switches in one frame, designed to optimize both data center planning and latency for specific computing projects. Installing these systems in the data center can help create a new class of use cases, including data center design, optimized edge computing, and data sovereignty for regulated industries.

Securing data on a highly available system

According to IBM’s Cost of a Data Breach report, conducted independently by Ponemon Institute and sponsored, analyzed, and published by IBM Security, surveyed organizations with a hybrid cloud model had lower average data breach costs, about $3.8 million, compared to public or private cloud models. IBM z16 and LinuxONE systems help support a secured, available hybrid IT environment critical to customer outcomes for essential industries like healthcare, financial services, government, and insurance.

More sophisticated cyber threats require new standards of protection. IBM z16 and LinuxONE 4 provide high levels of resiliency offering support for mission-critical workloads. These high availability levels, combined with the industry-leading security features of Fujitsu Enterprise Postgres, help consumers secure and maintain access to data from their bank accounts, medical records, and other personal information whenever they need it. IBM z16 and LinuxONE Rockhopper 4 single-frame and rack mount systems offer a broad range of security capabilities, including confidential computing, centralized key management, and quantum-safe cryptography.

Optimizing flexibility and sustainability

IBM z16 and LinuxONE Rockhopper 4 single-frame models are built to help maximize flexibility and sustainability in data centers. With a new partition-level power monitoring capability and additional environmental metrics, these single-frame systems are dedicated to helping clients reach their sustainability goals, reducing data center space and energy consumption. These key advantages distinguish the platforms for sustainability in the data center, especially when consolidating workloads from x86 servers.

As a part of the IBM Ecosystem, Fujitsu Enterprise Postgres is helping companies unlock the value of their infrastructure investments by implementing the tools and technologies designed to help them succeed in a hybrid cloud world. We are excited to be working closely with the IBM Ecosystem to bring new innovations to our clients.

Additional information

• Read IBM’s press release
• Learn more about Fujitsu Enterprise Postgres
• Learn more about IBM z16 and LinuxONE 4

January 2022

Critical vulnerabilities in Apache Log4Shell version and impact on Fujitsu Enterprise Postgres

Overview

Security is always a critical topic of discussion and concern for all organizations, and the recent critical Log4Shell security vulnerability CVE-2021-44228 was no different. This critical vulnerability affected almost the entire IT industry.

This vulnerability was given CVSS rating of 10.0, and immediate action was required to stop applications from being exposed. Compromised applications could be serious candidates to be exposed by a malicious entity, and organizations were on the verge of compromising security.

In light of this vulnerability, old Log4j vulnerabilities such as CVE-2019-17571 and CVE-2021-4104 were also reviewed, and it was identified that Log4j 1.x versions were also exposed to this vulnerability in certain configurations.

Fujitsu’s take on security issues

Fujitsu is committed to providing secure products and hence considers security very seriously. Post this vulnerability, Fujitsu did the study of vulnerability and impact analysis on all Fujitsu enterprise products, including Fujitsu Enterprise Postgres.

Fujitsu analysis

Fujitsu analyzed both Log4j 1.x and Log4j 2.x impact on all the supported versions of FUJITSU Enterprise Postgres and concluded the following:

• Log4j 1.x: Fujitsu identified that the reported vulnerabilities are only applicable in non-default configuration and exposed when ‘SocketServer’ functionality and ‘JMSAppender’ feature are used by the applications. Since Fujitsu Enterprise Postgres does not use either of those, ‘CVE-2019-17571 ‘and ‘CVE-2021-4104’ do not impact the product.
• Log4j 2.x: Fujitsu identified that the product is not affected by CVE-2021-44228, as this vulnerability was reported in Log4j 2.x version, however Fujitsu Enterprise Postgres does not use Log4j 2.x.

No impact on customer operations

‘CVE-2021-44228’ , ‘CVE-2021-4104’ and ‘CVE-2019-17571’ are not applicable to Fujitsu Enterprise Postgres, and hence, there is no impact on customer’s environment, therefore no further action is required.

Note about documentation mismatch

As explained above, there are no security issues identified in Fujitsu Enterprise Postgres - however, a minor issue was found in the documentation of products and versions of Fujitsu Enterprise Postgres listed below, where the file OSS_List.pdf (bundled in the installation media) provides mistmatched information regarding Log4j version (it shows version ‘2.12.0’ instead of ‘1.2.17’). This is just a mismatch in the documentation provided , and Fujitsu will address the documentation fix separately

The mismatched information is provided in the documentation for the products/versions below:

• Fujitsu Enterprise Postgres Advanced Edition
  Versions: 12, 12 SP1 ,13, 13 SP1
• Fujitsu Enterprise Postgres Advanced Edition for Linux on Z
  Versions: 12, 12 SP1,13
• Fujitsu Enterprise Postgres Advanced Edition Operator for Kubernetes
  Versions: 12, 13