Описание
Security update for kernel-firmware
This update for kernel-firmware fixes the following issues:
- Add microcode_amd_fam17h.bin (bsc#1068032 CVE-2017-5715)
This new firmware disables branch prediction on AMD family 17h processor to mitigate an attack on the branch predictor that could lead to information disclosure from e.g. kernel memory (bsc#1068032 CVE-2017-5715).
This update was imported from the SUSE:SLE-12-SP2:Update update project.
Список пакетов
openSUSE Leap 42.2
kernel-firmware-20170530-7.12.1
ucode-amd-20170530-7.12.1
Ссылки
- E-Mail link for openSUSE-SU-2018:0026-1
- SUSE Security Ratings
Описание
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
Затронутые продукты
openSUSE Leap 42.2:kernel-firmware-20170530-7.12.1
openSUSE Leap 42.2:ucode-amd-20170530-7.12.1
Ссылки
- CVE-2017-5715
- SUSE Bug 1068032
- SUSE Bug 1074562
- SUSE Bug 1074578
- SUSE Bug 1074701
- SUSE Bug 1074741
- SUSE Bug 1074919
- SUSE Bug 1075006
- SUSE Bug 1075007
- SUSE Bug 1075262
- SUSE Bug 1075419
- SUSE Bug 1076115
- SUSE Bug 1076372
- SUSE Bug 1078353
- SUSE Bug 1080039
- SUSE Bug 1087939
- SUSE Bug 1091815
- SUSE Bug 1095735
- SUSE Bug 1102055
- SUSE Bug 1102517