Описание
Security update for ucode-intel
This update for ucode-intel fixes the following issues:
Intel CPU Microcode was updated to the 20240514 release (bsc#1224277)
- CVE-2023-45733: Fixed a potential security vulnerability in some Intel® Processors that may have allowed information disclosure.
- CVE-2023-46103: Fixed a potential security vulnerability in Intel® Core™ Ultra Processors that may have allowed denial of service.
- CVE-2023-45745,CVE-2023-47855: Fixed a potential security vulnerabilities in some Intel® Trust Domain Extensions (TDX) module software that may have allowed escalation of privilege.
Список пакетов
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
ucode-intel-20240514-150200.41.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
ucode-intel-20240514-150200.41.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
ucode-intel-20240514-150200.41.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
ucode-intel-20240514-150200.41.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
ucode-intel-20240514-150200.41.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
ucode-intel-20240514-150200.41.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
ucode-intel-20240514-150200.41.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
ucode-intel-20240514-150200.41.1
SUSE Enterprise Storage 7.1
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Micro 5.1
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Micro 5.2
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Micro 5.3
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Micro 5.4
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Micro 5.5
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Server 15 SP2-LTSS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Server 15 SP3-LTSS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Server 15 SP4-LTSS
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
ucode-intel-20240514-150200.41.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
ucode-intel-20240514-150200.41.1
SUSE Manager Proxy 4.3
ucode-intel-20240514-150200.41.1
SUSE Manager Server 4.3
ucode-intel-20240514-150200.41.1
openSUSE Leap 15.5
ucode-intel-20240514-150200.41.1
openSUSE Leap 15.6
ucode-intel-20240514-150200.41.1
openSUSE Leap Micro 5.3
ucode-intel-20240514-150200.41.1
openSUSE Leap Micro 5.4
ucode-intel-20240514-150200.41.1
Ссылки
- Link for SUSE-SU-2024:1771-1
- E-Mail link for SUSE-SU-2024:1771-1
- SUSE Security Ratings
- SUSE Bug 1224277
- SUSE CVE CVE-2023-45733 page
- SUSE CVE CVE-2023-45745 page
- SUSE CVE CVE-2023-46103 page
- SUSE CVE CVE-2023-47855 page
Описание
Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclosure via local access.
Затронутые продукты
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Ссылки
- CVE-2023-45733
- SUSE Bug 1224277
Описание
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
Затронутые продукты
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Ссылки
- CVE-2023-45745
- SUSE Bug 1224277
Описание
Sequence of processor instructions leads to unexpected behavior in Intel(R) Core(TM) Ultra Processors may allow an authenticated user to potentially enable denial of service via local access.
Затронутые продукты
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Ссылки
- CVE-2023-46103
- SUSE Bug 1224277
Описание
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access.
Затронутые продукты
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:ucode-intel-20240514-150200.41.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:ucode-intel-20240514-150200.41.1
Ссылки
- CVE-2023-47855
- SUSE Bug 1224277