CLSA-2025-1740470330 linux-firmware: Fix of 2 CVEs

Update AMD SEV CPU firmware to address CVE-2023-31356, CVE-2023-20584...

CVE-2020-5666

CVE-2020-5666 affects Mitsubishi Electric MELSEC iQ-R Series CPU Modules. A remote attacker can trigger a denial-of-service by sending specially crafted HTTP packets, causing uncontrolled resource consumption in affected CPU modules. Affected firmware ranges are: R00/01/02 CPU firmware 05–19; R04...

AMI Firmware Permits Microcode Downgrade - US

Lenovo Security Advisory: LEN-24239 Potential Impact: Unauthorized microcode downgrade Severity: Medium Scope of Impact: Industry-wide Summary Description: AMI has reported to Lenovo that the BIOS supplied by AMI may allow an attacker to revert the CPU firmware to an older version. Mitigation...

AMD Rolls Out Spectre Fixes

AMD said that CPU firmware and Windows 10 patches are now available to safeguard its products against the Spectre security flaw. Mark Papermaster, senior vice president and chief technology officer at AMD, said in a Tuesday post that Spectre fixes are available for AMD customers, who can download...

CVE-2012-3017

Siemens SIMATIC S7-400 PN CPU devices with firmware 5.x allow remote attackers to cause a denial of service defect-mode transition and service outage via 1 malformed HTTP traffic or 2 malformed IP packets...