Unexpected Page Fault in Virtualized Environment Advisory - Lenovo Support US

2019-12-03T21:14:24
ID LENOVO:PS500297-NOSID
Type lenovo
Reporter Lenovo
Modified 2020-09-10T14:48:22

Description

Lenovo Security Advisory: LEN-29863

Potential Impact: Escalation of Privilege, Denial of Service, Information Disclosure

Scope of Impact: Industry-wide

Severity: Medium

CVE Identifier: CVE-2019-14607

Summary Description:

Intel reported a potential security vulnerability in multiple Intel processors may allow escalation of privilege, denial of service, information disclosure

Mitigation Strategy for Customers (what you should do to protect yourself):

Intel recommends updating to the firmware version indicated for your model in the Product Impact section below.


Product Impact:

To download the version specified for your product below, follow these steps:

  1. Navigate to the Drivers & Software support site for your product:
  2. Lenovo Products (sold worldwide, except in China): https://support.lenovo.com/
  3. Lenovo Products (sold in China): <https://newsupport.lenovo.com.cn/>
  4. IBM-branded System x Legacy Products: <https://www.ibm.com/support/fixcentral/>
  5. Search for your product by name or machine type.
  6. Click Drivers & Software on the left menu panel.
  7. Click on Manual Update to browse by Component type.
  8. Compare the minimum fix version for your product from the applicable product table below with the latest version posted on the support site.

Lenovo also offers tools to assist with update management as an alternative to the manual steps described above. Refer to the following for additional help:

  • PC Products and Software: <https://support.lenovo.com/us/en/solutions/ht504759>
  • Server and Enterprise Software: <https://support.lenovo.com/us/en/solutions/lnvo-lxcaupd> and <https://datacentersupport.lenovo.com/us/en/documents/lnvo-center>