Описание
Security update for microcode_ctl
This update for microcode_ctl fixes the following issues:
Updated to Intel CPU Microcode 20210525 release:
- CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. (bsc#1179833)
- CVE-2020-24511: The IBRS feature to mitigate Spectre variant 2 transient execution side channel vulnerabilities may not fully prevent non-root (guest) branches from controlling the branch predictions of the root (host) (bsc#1179836)
- CVE-2020-24512: Fixed trivial data value cache-lines such as all-zero value cache-lines may lead to changes in cache-allocation or write-back behavior for such cache-lines (bsc#1179837)
- CVE-2020-24489: Fixed Intel VT-d device pass through potential local privilege escalation (bsc#1179839)
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
SUSE Linux Enterprise Server 11 SP4-LTSS
Ссылки
- Link for SUSE-SU-2021:14758-1
- E-Mail link for SUSE-SU-2021:14758-1
- SUSE Security Ratings
- SUSE Bug 1179833
- SUSE Bug 1179836
- SUSE Bug 1179837
- SUSE Bug 1179839
- SUSE CVE CVE-2020-24489 page
- SUSE CVE CVE-2020-24511 page
- SUSE CVE CVE-2020-24512 page
- SUSE CVE CVE-2020-24513 page
Описание
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
Затронутые продукты
Ссылки
- CVE-2020-24489
- SUSE Bug 1179839
- SUSE Bug 1192359
- SUSE Bug 1199300
- SUSE Bug 1201731
- SUSE Bug 1225680
Описание
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
Ссылки
- CVE-2020-24511
- SUSE Bug 1179836
- SUSE Bug 1192360
- SUSE Bug 1199300
- SUSE Bug 1201731
Описание
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
Ссылки
- CVE-2020-24512
- SUSE Bug 1179837
- SUSE Bug 1192360
- SUSE Bug 1199300
- SUSE Bug 1201731
Описание
Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
Ссылки
- CVE-2020-24513
- SUSE Bug 1179833
- SUSE Bug 1192360
- SUSE Bug 1199300
- SUSE Bug 1201731