Lucene search

K
oraclelinuxOracleLinuxELSA-2019-4868
HistoryDec 04, 2019 - 12:00 a.m.

microcode_ctl security update

2019-12-0400:00:00
linux.oracle.com
47

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

[3:1.17-33.19.0.4]

  • set early_microcode=‘no’ in virtualized guests to avoid early load bugs [Orabug: 30618737]
    [3:1.17-33.19.0.1]
  • merge Oracle changes for early load via dracut
  • enable late load on install for UEK4 kernels marked safe (except BDW-79)
  • update 06-55-04 to 0x2000065
  • update 06-55-07 to 0x500002c

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C