Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2020:3276-1

Опубликовано: 10 нояб. 2020
Источник: suse-cvrf

Описание

Security update for ucode-intel

This update for ucode-intel fixes the following issues:

  • Intel CPU Microcode updated to 20201027 prerelease
  • CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446)
  • CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594)

New Platforms:

ProcessorSteppingF-M-S/PIOld VerNew VerProducts
TGLB106-8c-01/8000000068Core Gen11 Mobile
CPX-SPA106-55-0b/bf0700001eXeon Scalable Gen3
CML-HR106-a5-02/20000000e0Core Gen10 Mobile
CML-S62G106-a5-03/22000000e0Core Gen10
CML-S102Q006-a5-05/22000000e0Core Gen10
CML-U62 V2K006-a6-01/80000000e0Core Gen10 Mobile

Updated Platforms:

ProcessorSteppingF-M-S/PIOld VerNew VerProducts
GKL-RR006-7a-08/010000001600000018Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120
SKL-U/YD006-4e-03/c0000000d6000000e2Core Gen6 Mobile
SKL-U23eK106-4e-03/c0000000d6000000e2Core Gen6 Mobile
APLD006-5c-09/030000003800000040Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx
APLE006-5c-0a/03000000160000001eAtom x5-E39xx
SKL-H/SR0/N006-5e-03/36000000d6000000e2Core Gen6; Xeon E3 v5
HSX-E/EPCx/M106-3f-02/6f0000004300000044Core Gen4 X series; Xeon E5 v3
SKX-SPB106-55-03/970100015701000159Xeon Scalable
SKX-SPH0/M0/U006-55-04/b70200690602006a08Xeon Scalable
SKX-DM106-55-04/b70200690602006a08Xeon D-21xx
CLX-SPB006-55-06/bf04002f0104003003Xeon Scalable Gen2
CLX-SPB106-55-07/bf05002f0105003003Xeon Scalable Gen2
ICL-U/YD106-7e-05/8000000078000000a0Core Gen10 Mobile
AML-Y22H006-8e-09/10000000d6000000deCore Gen8 Mobile
KBL-U/YH006-8e-09/c0000000d6000000deCore Gen7 Mobile
CFL-U43eD006-8e-0a/c0000000d6000000e0Core Gen8 Mobile
WHL-UW006-8e-0b/d0000000d6000000deCore Gen8 Mobile
AML-Y42V006-8e-0c/94000000d6000000deCore Gen10 Mobile
CML-Y42V006-8e-0c/94000000d6000000deCore Gen10 Mobile
WHL-UV006-8e-0c/94000000d6000000deCore Gen8 Mobile
KBL-G/H/S/E3B006-9e-09/2a000000d6000000deCore Gen7; Xeon E3 v6
CFL-H/S/E3U006-9e-0a/22000000d6000000deCore Gen8 Desktop, Mobile, Xeon E
CFL-SB006-9e-0b/02000000d6000000deCore Gen8
CFL-H/SP006-9e-0c/22000000d6000000deCore Gen9
CFL-HR006-9e-0d/22000000d6000000deCore Gen9 Mobile
CML-U62A006-a6-00/80000000ca000000e0Core Gen10 Mobile

Список пакетов

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
ucode-intel-20201027-3.33.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
ucode-intel-20201027-3.33.1
SUSE Linux Enterprise Module for Basesystem 15 SP1
ucode-intel-20201027-3.33.1

Ссылки

Описание

Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.

Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:ucode-intel-20201027-3.33.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:ucode-intel-20201027-3.33.1
SUSE Linux Enterprise Module for Basesystem 15 SP1:ucode-intel-20201027-3.33.1
Ссылки

Описание

Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:ucode-intel-20201027-3.33.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:ucode-intel-20201027-3.33.1
SUSE Linux Enterprise Module for Basesystem 15 SP1:ucode-intel-20201027-3.33.1
Ссылки
Уязвимость SUSE-SU-2020:3276-1