17 matches found
drm/amd/pm: Prevent division by zero
...
CVE-2022-36397
A flaw was found in Intel. Incorrect default permissions in the software installer for some IntelR QAT drivers for the Linux Kernel may allow an authenticated user to enable privilege escalation via local access. Mitigation Please contact the hardware vendor for more update...
CVE-2022-41808
An improper buffer restriction flaw was found in the software for the Intel® QAT Driver for the Linux Kernel. This flaw allows an authenticated user to cause a denial of service via local access. Mitigation Please contact the hardware vendor for more updates...
CVE-2022-30339
An out-of-bounds read flaw was found in hw. The firmware for the IntelR Integrated Sensor Solution may allow a privileged user to enable a denial of service via local access. Mitigation Please contact the hardware vendor for more updates...
CVE-2021-0187
A flaw was found in hw. Improper access control in the BIOS firmware for some IntelR processors may allow a privileged user to potentially enable an escalation of privilege via local access. Mitigation Please contact the hardware vendor for more updates...
CVE-2022-30704
A flaw was found in hw. Improper initialization in the IntelR TXT SINIT ACM for some IntelR processors may allow a privileged user to potentially enable escalation of privilege via local access. Mitigation Please contact the hardware vendor for more updates...
CVE-2022-30539
A flaw was found in how. Use-after-free in the BIOS firmware for some IntelR processors may allow a privileged user to potentially enable escalation of privilege via local access. Mitigation Please contact the hardware vendor for more updates...
Fixed vulnerabilities in the BIOS belonging to Intel processors
Intel has fixed two vulnerabilities in the BIOS code of the Pentium, Celeron, Xeon and Core processors. A malicious person with physical access and the authentication to access the BIOS could potentially exploit the vulnerabilities to grant himself elevated privileges and thus potentially execute...
CVE-2019-11090
Cryptographic timing vulnerabilities were discovered in certain versions of the Trusted Platform Module TPM firmware distributed by Intel and STMicroelectronics. Software that uses the TPM to compute ECDSA signatures could leak information through the timing of ECDSA signature operations, allowin...
CVE-2019-16863
Cryptographic timing vulnerabilities were discovered in certain versions of the Trusted Platform Module TPM firmware distributed by Intel and STMicroelectronics. Software that uses the TPM to compute ECDSA signatures could leak information through the timing of ECDSA signature operations, allowin...
Scientific Linux Security Update : microcode_ctl on SL6.x, SL7.x i386/x86_64 (20180116) (Spectre)
This update supersedes the previous microcode update provided with the CVE-2017-5715 Spectre CPU branch injection vulnerability mitigation. Further testing has uncovered problems with the microcode provided along with the Spectre mitigation that could lead to system instabilities. As a result, th...
CentOS Update for microcode_ctl CESA-2018:0093 centos7
Check the version of microcodectl SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882828";...
Scientific Linux Security Update : linux-firmware on SL7.x (noarch) (20180116) (Spectre)
This update supersedes the previous microcode update provided with the CVE-2017-5715 Spectre CPU branch injection vulnerability mitigation. Further testing has uncovered problems with the microcode provided along with the Spectre mitigation that could lead to system instabilities. As a result, th...
microcode_ctl security update
CentOS Errata and Security Advisory CESA-2018:0093 The microcodectl packages provide microcode updates for Intel and AMD processors. This update supersedes microcode provided by Red Hat with the CVE-2017-5715 “Spectre” CPU branch injection vulnerability mitigation. Historically, Red Hat has...
RHEL 7 : linux-firmware (RHSA-2018:0094) (Spectre)
An update for linux-firmware is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 7.2 Advanced Update Support, Red Hat Enterprise Linux 7.2 Telco Extended Update Support, Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions, and Red Hat Enterprise Linux 7.3 Extended...
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:0012-1) (Meltdown) (Spectre)
The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. This update adds mitigations for various side channel attacks against modern CPUs that could disclose content of otherwise unreadable memory bnc1068032. - CVE-2017-5753 / 'SpecreAttack': Local attackers ...
Hardware Vendor Offers Backdoor with Every Product
IT administrators know there’s nothing more frustrating than losing administrative access to your network equipment. But Allied Telesis, a Japan-based maker of switches, routers and other networking devices, has a fix: guaranteed backdoors for every product. That revelation comes after a support...