Amazon Linux 2 : microcode_ctl (ALAS-2024-2682)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2682 advisory. 2024-12-05: CVE-2024-21853 was added to this advisory. 2024-12-05: CVE-2024-21820 was added to this advisory...

Important: microcode_ctl

Issue Overview: Incorrect default permissions in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2024-21820 Improper finite state machines FSMs in the hardware logic ...

Amazon Linux 2023 : microcode_ctl (ALAS2023-2024-748)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-748 advisory. 2024-12-05: CVE-2024-21820 was added to this advisory. 2024-12-05: CVE-2024-21853 was added to this advisory. 2024-12-05: CVE-2024-23918 was added to this advisory. Incorrect default permission...

Amazon Linux AMI : microcode_ctl (ALAS-2024-1950)

The version of microcodectl installed on the remote host is prior to 2.1-47.44. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1950 advisory. 2024-12-05: CVE-2024-21820 was added to this advisory. 2024-12-05: CVE-2024-23918 was added to this advisory...

Important: microcode_ctl

Issue Overview: Incorrect default permissions in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2024-21820 Improper finite state machines FSMs in the hardware logic ...

Important: microcode_ctl

Issue Overview: Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-49141 Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user t...

CentOS 9 : microcode_ctl-20240910-1.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the microcodectl-20240910-1.el9 build changelog. - Observable discrepancy in RAPL interface for some IntelR Processors may allow a privileged user to potentially enable information...

[SECURITY] Fedora 39 Update: microcode_ctl-2.1-58.3.fc39

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

Fedora 39 : microcode_ctl (2024-1d4155bd39)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-1d4155bd39 advisory. - Update to upstream 2.1-45. 20240910 - Update of 06-97-02/0x07 ADL-HX/S 8+8 C0 microcode from revision 0x35 up to 0x36; - Update of 06-97-05/0x07...

Fedora: Security Advisory (FEDORA-2024-1d4155bd39)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: microcode_ctl

Issue Overview: Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-49141 Insufficient control flow management for some IntelR Xeon Processors may allow an authenticated user t...

Amazon Linux 2 : microcode_ctl (ALAS-2024-2635)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2635 advisory. 2024-10-10: CVE-2024-22374 was added to this advisory. Improper isolation in some IntelR Processors stream cache...

Fedora: Security Advisory (FEDORA-2024-e6b5e38ae6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 40 : microcode_ctl (2024-e6b5e38ae6)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-e6b5e38ae6 advisory. - Update to upstream 2.1-45. 20240910 - Update of 06-97-02/0x07 ADL-HX/S 8+8 C0 microcode from revision 0x35 up to 0x36; - Update of 06-97-05/0x07...

Amazon Linux AMI : microcode_ctl (ALAS-2024-1946)

The version of microcodectl installed on the remote host is prior to 2.1-47.43. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1946 advisory. Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable...

Important: microcode_ctl

Issue Overview: Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-49141 Affected Packages: microcodectl Issue Correction: Run yum update microcodectl or yum update --advisory...

RHSA-2021:2308 Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

Bulletin has no description...

RHSA-2021:3322 Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

Bulletin has no description...

RHSA-2021:3323 Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

Bulletin has no description...

RHSA-2021:2304 Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

Bulletin has no description...