SUSE-SU-2022:1847-1 Security update for kernel-firmware

This update for kernel-firmware fixes the following issues: Update AMD ucode and SEV firmware - CVE-2021-26339, CVE-2021-26373, CVE-2021-26347, CVE-2021-26376, CVE-2021-26375, CVE-2021-26378, CVE-2021-26372, CVE-2021-26339, CVE-2021-26348, CVE-2021-26342, CVE-2021-26388, CVE-2021-26349,...

Security Bulletin: Security vulnerabilities have been identified in OpenSSL, IBM Java Runtime and the microcode shipped with the DS8000 Hardware Management Console (HMC)

Summary The updates indicated below have been released to address the following vulnerabilities: CVE-2016-2107 MITM attack in OpenSSL, CVE-2016-5547 Denial of service in IBM Runtime Environment Java™ CVE-2017-1123 Escalation of privilege in the DS8000 HMC Vulnerability Details CVEID: CVE-2016-210...

Mageia: Security Advisory (MGASA-2022-0193)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2022-0193 Updated microcode packages fix security vulnerabilities

Updated microcodes for Intel processors, fixing various functional issues, and at least the following security issues: Sensitive information accessible by physical probing of JTAG interface for some IntelR Processors with SGX may allow an unprivileged user to potentially enable information...

openSUSE: Security Advisory for ucode-intel (SUSE-SU-2022:1727-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE: Security Advisory (SUSE-SU-2022:1744-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:1747-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

SUSE-SU-2022:1744-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

[SECURITY] Fedora 34 Update: microcode_ctl-2.1-46.3.fc34

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

SUSE: Security Advisory (SUSE-SU-2022:1727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2022:1728-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:1728-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

SUSE-SU-2022:1727-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

Information Disclosure

intel-microcode is vulnerable to information disclosure. Improper access control in the library may allow a local attacker to potentially enable information disclosure via local access...

[SECURITY] Fedora 35 Update: microcode_ctl-2.1-47.3.fc35

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

[SECURITY] Fedora 36 Update: microcode_ctl-2.1-51.fc36

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

CVE-2021-26342

In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer TLB following a particular sequence of operations that includes creation of a new virtual machine control block VMCB. The failure to flush the TLB may cause the microcode to use stale TLB translations which may allow for...

Code injection

In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer TLB following a particular sequence of operations that includes creation of a new virtual machine control block VMCB. The failure to flush the TLB may cause the microcode to use stale TLB translations which may allow for...

AMD CPUs 安全漏洞

AMD CPUs are a family of CPUs from AMD in the United States. AMD CPUs suffers from a security vulnerability that stems from the fact that failure to refresh the TLB can cause the microcode to use an outdated TLB, thus leaking memory contents...

ALBA-2022:2112 microcode_ctl bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...