EulerOS 2.0 SP1 : kernel (EulerOS-SA-2018-1002)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The recent speculative execution CVEs address three potential attacks across a wide variety of architectures and hardware platforms. - Note: Thi...

Oracle Linux 6 : libvirt (ELSA-2018-0030)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-0030 advisory. - util: Implement virFileReadHeaderFD CVE-2017-5715 - util: add virFileReadHeaderQuiet wrapper around virFileReadHeaderFD CVE-2017-5715 - util: introduce...

Oracle Linux 7 : libvirt (ELSA-2018-0029)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-0029 advisory. - qemu: Properly store microcode version in QEMU caps cache CVE-2017-5715 - util: add virFileReadHeaderQuiet wrapper around virFileReadHeaderFD CVE-2017-5715 -...

OracleVM 3.4 : microcode_ctl (OVMSA-2018-0003)

The remote OracleVM system is missing necessary patches to address critical security updates : - Enable early microcode load to allow updating Broadwell model 79 - Make sure 'modprobe microcode' is not executed on Broadwell model 79 - Run dracut upon microcode update - Update Intel CPU microde fo...

EulerOS 2.0 SP2 : kernel (EulerOS-SA-2018-1001)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The recent speculative execution CVEs address three potential attacks across a wide variety of architectures and hardware platforms. - Note: Thi...

openSUSE Security Update : ucode-intel (openSUSE-2018-4) (Spectre)

This update for ucode-intel fixes the following issues : The CPU microcode for Haswell-X, Skylake-X and Broadwell-X chipsets was updated to report both branch prediction control via CPUID flag and ability to control branch prediction via an MSR register. This update is part of a mitigation for a...

Fedora 26 : dracut (2018-9bcc7b0b70)

Adds support for early microcode for AMD CPUs family = 0x17. Note: Intel CPU support is fine. To add the microcode to all your initramfs images: dracut --regenerate-all --force To only add it to the current kernel version: dracut --force Note that Tenable Network Security has extracted the...

Experts Weigh In On Spectre Patch Challenges

The race to patch against the Meltdown and Spectre processor vulnerabilities disclosed last week is on. As of today, there are no known exploits in the wild impacting vulnerable Intel, AMD and ARM devices. Currently, vendors are focused on three main mitigation efforts. Patches that address the...

VMSA-2018-0004:VMware vSphere, Workstation and Fusion updates add Hypervisor-Assisted Guest Remediation for speculative execution issue

VMSA-2018-0004.3 VMware vSphere, Workstation and Fusion updates add Hypervisor-Assisted Guest Mitigations for speculative execution issue VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2018-0005 VMware Security Advisory Severity: Critical VMware Security Advisory Synopsis:...

Security update for kernel-firmware (important)

This update for kernel-firmware fixes the following issues: - Add microcodeamdfam17h.bin bsc1068032 CVE-2017-5715 This new firmware disables branch prediction on AMD family 17h processor to mitigate an attack on the branch predictor that could lead to information disclosure from e.g. kernel memor...

RHEL 6 : microcode_ctl (RHSA-2018:0039) (Spectre)

An update for microcodectl is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

Oracle Linux 6 : microcode_ctl (ELSA-2018-0013)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2018-0013 advisory. 1:1.17-25.2 - Update Intel CPU microde for 06-3f-02, 06-4f-01, and 06-55-04 - Add amd microcodeamdfam17h.bin data file - Resolves: 1527357 1:1.17-25.1 - Update...

libvirt security update

3.2.0-14.0.1.el74.7 - bump release and rebuild 3.2.0-14.el74.7 - qemu: Properly store microcode version in QEMU caps cache CVE-2017-5715 3.2.0-14.el74.6 - util: add virFileReadHeaderQuiet wrapper around virFileReadHeaderFD CVE-2017-5715 - util: introduce virHostCPUGetMicrocodeVersion CVE-2017-571...

CentOS 6 : microcode_ctl (CESA-2018:0013) (Spectre)

An update for microcodectl is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Important: Red Hat Bug Fix Advisory: dracut bug fix update

Updated dracut packages that fix one bug are now available for Red Hat Enterprise Linux 7. The dracut packages contain an event-driven initial RAM file system initramfs generator infrastructure based on the udev device manager. The virtual file system, initramfs, is loaded together with the kerne...

(RHSA-2018:0039) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

(RHSA-2018:0038) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

(RHSA-2018:0036) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

(RHSA-2018:0035) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

Citrix XenServer Multiple Security Updates

Important Note Due to concerns about the robustness of some of the Intel microcode updates included in the earlier hotfixes for these issues XS71ECU1009, XS72E013 and XS73E001, Citrix has superseded these hotfixes with new hotfixes listed below. Customers are strongly recommended to apply these n...