USN-7269-2 intel-microcode vulnerabilities

USN-7269-1 fixed vulnerabilities in Intel Microcode. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory details: Ke Sun, Paul Grosen and Alyssa Milburn discovered that some Intel® Processors did not properly implement Finite State Machines FSMs in Hardware Logi...

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via local...

SUSE-SU-2025:0591-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20250211 release bsc1237096 - CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via loca...

SUSE-SU-2025:0569-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20250211 release bsc1237096 - CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via loca...

USN-7269-1 intel-microcode vulnerabilities

Ke Sun, Paul Grosen and Alyssa Milburn discovered that some Intel® Processors did not properly implement Finite State Machines FSMs in Hardware Logic. A local privileged attacker could use this issue to cause a denial of service. CVE-2024-31068 It was discovered that some Intel® Processors with...

ALPINE-CVE-2024-36293

Improper access control in the EDECCSSA user leaf function for some IntelR Processors with IntelR SGX may allow an authenticated user to potentially enable denial of service via local access...

Intel Software Guard Extensions 访问控制错误漏洞

Intel Software Guard Extensions SGX is a set of security-related instructions from the U.S. company Intel that is built into some Intel central processors. It provides hardware-based memory encryption to isolate application-specific code and data in memory. An Access Control Error vulnerability...

PT-2025-6652

Name of the Vulnerable Software and Affected Versions IntelR Processors with IntelR SGX affected versions not specified Description The issue is related to improper access control in the EDECCSSA user leaf function, which may allow an authenticated user to potentially enable denial of service via...

UBUNTU-CVE-2024-36293

Improper access control in the EDECCSSA user leaf function for some IntelR Processors with IntelR SGX may allow an authenticated user to potentially enable denial of service via local access...

Intel CPUs -- multiple vulnerabilities

Intel reports: A potential security vulnerability in some Intel Processors may allow denial of service. Intel released microcode updates to mitigate this potential vulnerability. A potential security vulnerability in some Intel Software Guard Extensions Intel SGX Platforms may allow denial of...

PT-2025-5628 · Intel · Intel Sgx

Name of the Vulnerable Software and Affected Versions: Intel SGX affected versions not specified Description: The issue is a side-channel timing attack against Intel SGX enclaves, which can lead to the complete compromise of Trusted Execution Environment TEE attestation. A proof of concept PoC ha...

Gramine 安全漏洞

Gramine is an open source Linux multiprocess application library operating system supporting Intel SGX by The Gramine Project. A security vulnerability exists in Gramine, which stems from a mismatch between SW signals and HW anomalies, resulting in an interface vulnerability...

SUSE CVE-2024-21820

Incorrect default permissions in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access...

SUSE CVE-2024-23918

Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access...

ALPINE-CVE-2024-23918

Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access...

DEBIAN-CVE-2024-23918

Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access...

UBUNTU-CVE-2024-23918

Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access...

Intel SGX SDK 缓冲区错误漏洞

Intel SGX SDK is a set of software development kits based on SGX Intel Software Security Extensions technology from Intel Corporation USA. The Intel SGX SDK suffers from a buffer error vulnerability that stems from allowing out-of-bounds writes. An attacker could exploit the vulnerability to...

PT-2024-20174

Name of the Vulnerable Software and Affected Versions Intel Xeon processor affected versions not specified Description The issue is related to an improper conditions check in some Intel Xeon processor memory controller configurations when using Intel SGX. This may allow a privileged user to...

kernel: local privilege escalation on Intel microcode on Intel(R) Xeon(R)

A vulnerability was found in the Intel Xeon Processor's microcode. This issue may allow a malicious actor to achieve local privilege escalation when using Intel SGX or Intel TDX features...