Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:0502-1

Опубликовано: 18 фев. 2022
Источник: suse-cvrf

Описание

Security update for ucode-intel

This update for ucode-intel fixes the following issues:

Updated to Intel CPU Microcode 20220207 release.

  • CVE-2021-0146: Fixed a potential security vulnerability in some Intel Processors may allow escalation of privilege (bsc#1192615)

  • CVE-2021-0127: Intel Processor Breakpoint Control Flow (bsc#1195779)

  • CVE-2021-0145: Fast store forward predictor - Cross Domain Training (bsc#1195780)

  • CVE-2021-33120: Out of bounds read for some Intel Atom processors (bsc#1195781)

  • Security updates for INTEL-SA-00528

  • Security updates for INTEL-SA-00532

Список пакетов

Image SLES15-SAP-Azure-LI-BYOS-Production
ucode-intel-20220207-3.70.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
ucode-intel-20220207-3.70.1
SUSE Linux Enterprise Server for SAP Applications 15
ucode-intel-20220207-3.70.1

Ссылки

Описание

Insufficient control flow management in some Intel(R) Processors may allow an authenticated user to potentially enable a denial of service via local access.

Затронутые продукты
Image SLES15-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-3.70.1
Image SLES15-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-LTSS:ucode-intel-20220207-3.70.1
Ссылки

Описание

Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Затронутые продукты
Image SLES15-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-3.70.1
Image SLES15-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-LTSS:ucode-intel-20220207-3.70.1
Ссылки

Описание

Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Затронутые продукты
Image SLES15-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-3.70.1
Image SLES15-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-LTSS:ucode-intel-20220207-3.70.1
Ссылки

Описание

Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access.

Затронутые продукты
Image SLES15-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-3.70.1
Image SLES15-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS:ucode-intel-20220207-3.70.1
SUSE Linux Enterprise High Performance Computing 15-LTSS:ucode-intel-20220207-3.70.1
Ссылки
Уязвимость SUSE-SU-2022:0502-1