Intel® Xeon Processor Advisory

Summary: A potential security vulnerability in some Intel® Xeon Processors may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-22374 Description: Insufficient control flow management for some Intel® Xeon...

Important: microcode_ctl

Issue Overview: Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-49141 Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user t...

Amazon Linux 2023 : microcode_ctl (ALAS2023-2024-712)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-712 advisory. Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2024-22374 Tenable has extracted the...

Amazon Linux 2 : microcode_ctl (ALAS-2024-2631)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2631 advisory. Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user to potentially enable deni...

Medium: microcode_ctl

Issue Overview: Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2024-22374 Affected Packages: microcodectl Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository...

Medium: microcode_ctl

Issue Overview: Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2024-22374 Affected Packages: microcodectl Issue Correction: Run dnf update microcodectl --releasever 2023.5.20240903 ...

Medium: microcode_ctl

Issue Overview: Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user to potentially enable denial of service via local access. CVE-2024-22374 Affected Packages: microcodectl Issue Correction: Run dnf update microcodectl --releasever 2023.5.20240903 ...

CVE-2024-22374

Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user to potentially enable denial of service via local access...

CVE-2024-22374

CVE-2024-22374: Insufficient control flow management in some Intel Xeon processors may allow an authenticated user to trigger denial of service via local access. Intel Intel-SA-01073 notes affected: 4th and 5th Generation Intel Xeon Scalable Processors. Mitigation: update to the latest platform p...