Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2024:1684-1

Опубликовано: 18 мая 2024
Источник: suse-cvrf

Описание

Security update for ucode-intel

This update for ucode-intel fixes the following issues:

Intel CPU Microcode was updated to the 20240514 release (bsc#1224277)

  • CVE-2023-45733: Fixed a potential security vulnerability in some Intel® Processors that may have allowed information disclosure.
  • CVE-2023-46103: Fixed a potential security vulnerability in Intel® Core™ Ultra Processors that may have allowed denial of service.
  • CVE-2023-45745,CVE-2023-47855: Fixed a potential security vulnerabilities in some Intel® Trust Domain Extensions (TDX) module software that may have allowed escalation of privilege.

Список пакетов

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
ucode-intel-20240514-137.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
ucode-intel-20240514-137.1
SUSE Linux Enterprise Server 12 SP5
ucode-intel-20240514-137.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
ucode-intel-20240514-137.1

Ссылки

Описание

Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access.

Затронутые продукты
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-137.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server 12 SP5:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:ucode-intel-20240514-137.1
Ссылки

Описание

Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.

Затронутые продукты
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-137.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server 12 SP5:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:ucode-intel-20240514-137.1
Ссылки

Описание

Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access.

Затронутые продукты
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-137.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server 12 SP5:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:ucode-intel-20240514-137.1
Ссылки

Описание

Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.

Затронутые продукты
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-137.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server 12 SP5:ucode-intel-20240514-137.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:ucode-intel-20240514-137.1
Ссылки
Уязвимость SUSE-SU-2024:1684-1