Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:0575-1

Опубликовано: 25 фев. 2022
Источник: suse-cvrf

Описание

Security update for ucode-intel

This update for ucode-intel fixes the following issues:

Updated to Intel CPU Microcode 20220207 release.

  • CVE-2021-0146: Fixed a potential security vulnerability in some Intel Processors may allow escalation of privilege (bsc#1192615)

  • CVE-2021-0127: Intel Processor Breakpoint Control Flow (bsc#1195779)

  • CVE-2021-0145: Fast store forward predictor - Cross Domain Training (bsc#1195780)

  • CVE-2021-33120: Out of bounds read for some Intel Atom processors (bsc#1195781)

  • Security updates for INTEL-SA-00528

  • Security updates for INTEL-SA-00532

Список пакетов

HPE Helion OpenStack 8
ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production
ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production
ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP2-BCL
ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP3-BCL
ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP3-LTSS
ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP4-LTSS
ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
ucode-intel-20220207-13.93.1
SUSE OpenStack Cloud 8
ucode-intel-20220207-13.93.1
SUSE OpenStack Cloud 9
ucode-intel-20220207-13.93.1
SUSE OpenStack Cloud Crowbar 8
ucode-intel-20220207-13.93.1
SUSE OpenStack Cloud Crowbar 9
ucode-intel-20220207-13.93.1

Ссылки

Описание

Insufficient control flow management in some Intel(R) Processors may allow an authenticated user to potentially enable a denial of service via local access.

Затронутые продукты
HPE Helion OpenStack 8:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP2-BCL:ucode-intel-20220207-13.93.1
Ссылки

Описание

Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Затронутые продукты
HPE Helion OpenStack 8:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP2-BCL:ucode-intel-20220207-13.93.1
Ссылки

Описание

Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Затронутые продукты
HPE Helion OpenStack 8:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP2-BCL:ucode-intel-20220207-13.93.1
Ссылки

Описание

Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access.

Затронутые продукты
HPE Helion OpenStack 8:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:ucode-intel-20220207-13.93.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:ucode-intel-20220207-13.93.1
SUSE Linux Enterprise Server 12 SP2-BCL:ucode-intel-20220207-13.93.1
Ссылки
Уязвимость SUSE-SU-2022:0575-1