2137 matches found
Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to a denial of service due to the use of OpenSSL (CVE-2023-6129)
Summary IBM Virtualization Engine TS7700 is susceptible to a denial of service due to the use of OpenSSL CVE-2023-6129. OpenSSL is used in TS7700 to encrypt data in flight during EKM communications, Secure Data Transfer between clusters, and for TS7700 Advanced Object Store for DS8000...
CLSA-2024-1712837970 Update of microcode_ctl
Moved tuxcare patches from 2:2.1-73.16.tuxcare.els1 - genupdate2.py was updated to output strings having restricted length - Update Intel CPU microcode to microcode-20231114 release it's the same as microcode-20231009 - Update vendor patches...
openSUSE Security Advisory (SUSE-SU-2024:1139-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:1139-1 Security update for ucode-intel
This update for ucode-intel fixes the following issues: - Updated to Intel CPU Microcode 20240312 release. bsc1221323 - CVE-2023-39368: Protection mechanism failure of bus lock regulator for some Intel Processors may allow an unauthenticated user to potentially enable denial of service via networ...
Security Bulletin: Vulnerabilities have been identified with the DS8900F Hardware Management Console (HMC)
Summary The updates indicated below have been released to address the following vulnerabilities: CVE-2023-46169 Arbitrary file deletion, CVE-2023-46171 view sensitive log information, CVE-2023-46172 Bypass authentication restrictions for authorized user, CVE-2023-46170 Arbitrary file read ,...
Mageia: Security Advisory (MGASA-2024-0103)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0103 Updated microcode packages fix security vulnerabilities
Protection mechanism failure in some 3rd and 4th Generation IntelR XeonR Processors when using IntelR SGX or IntelR TDX may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2023-22655 Information exposure through microarchitectural state after transient...
Updated microcode packages fix security vulnerabilities
Protection mechanism failure in some 3rd and 4th Generation IntelR XeonR Processors when using IntelR SGX or IntelR TDX may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2023-22655 Information exposure through microarchitectural state after transient...
Missing Linux Kernel mitigations for 'Register File Data Sampling (RFDS)' hardware vulnerability (INTEL-SA-00898)
The remote host is missing one or more known mitigations on Linux Kernel side for the referenced SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
CVE-2023-28746
A vulnerability was found in some Intel Atom Processor's microcode. This issue may allow a malicious actor to achieve a local information disclosure, impacting the data confidentiality of the targeted system...
CVE-2023-22655
A vulnerability was found in the Intel Xeon Processor's microcode. This issue may allow a malicious actor to achieve local privilege escalation when using Intel SGX or Intel TDX features...
SUSE-SU-2024:0917-1 Security update for ucode-intel
This update for ucode-intel fixes the following issues: - Updated to Intel CPU Microcode 20240312 release. bsc1221323 - CVE-2023-39368: Protection mechanism failure of bus lock regulator for some Intel Processors may allow an unauthenticated user to potentially enable denial of service via networ...
Privilege Escalation
intel-microcode is vulnerable to privilege escalation. The vulnerability is due to a failure in the protection mechanism, which may allow an attacker to potentially enable escalation of privileges via local access...
Information Disclosure
intel-microcode is vulnerable to information disclosure. The vulnerability is due to non-transparent sharing of return predictor targets between contexts, which may allow an authorized user to potentially enable information disclosure via local access...
Information Disclosure
intel-microcode is vulnerable to information disclosure. The vulnerability is due to incorrect calculation in the microcode keying mechanism, which may allow a privileged user to potentially enable information disclosure via local access...
PT-2025-2514 · Qualcomm · Qualcomm Embedded Platform Microcode
Name of the Vulnerable Software and Affected Versions: Qualcomm embedded platform microcode affected versions not specified Description: The issue is related to a memory corruption problem that occurs when parsing memory map information in IOCTL calls. This can be exploited to impact the...
CVE-2023-43490
Incorrect calculation in microcode keying mechanism for some IntelR XeonR D Processors with IntelR SGX may allow a privileged user to potentially enable information disclosure via local access...
DEBIAN-CVE-2023-43490
Incorrect calculation in microcode keying mechanism for some IntelR XeonR D Processors with IntelR SGX may allow a privileged user to potentially enable information disclosure via local access...
ALPINE-CVE-2023-43490
Incorrect calculation in microcode keying mechanism for some IntelR XeonR D Processors with IntelR SGX may allow a privileged user to potentially enable information disclosure via local access...
CVE-2023-43490
CVE-2023-43490 concerns an incorrect calculation in the microcode keying mechanism for some Intel Xeon D processors with SGX, enabling potential information disclosure by a privileged local user. The vulnerability affects Intel microcode handling and is repeatedly referenced across distributions ...