CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems ICS advisories on July 25, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-207-01 Siemens SICAM Products ICSA-24-207-02 Positron Broadcast Signal Processor CISA...

Multi-vendor BIOS Security Vulnerabilities (February, 2024) - Lenovo Support US

No description provided...

The vulnerability of graphic drivers in microprogramming software for Intel processors, related to reading beyond the memory boundary, allows attackers to exploit the protected information.

The vulnerability of graphics drivers in microprogramming software for Intel processors is related to reading data beyond the memory boundary. Exploiting this vulnerability can allow an attacker to disclose protected information...

K41043270: Intel processor vulnerabilities CVE-2021-0086 and CVE-2021-0089

Security Advisory Description CVE-2021-0086 Observable response discrepancy in floating-point operations for some IntelR Processors may allow an authorized user to potentially enable information disclosure via local access. CVE-2021-0089 Observable response discrepancy in some IntelR Processors m...

K34425791: Intel processor vulnerabilities CVE-2019-0151, CVE-2019-0152

Security Advisory Description CVE-2019-0151 Insufficient memory protection in IntelR TXT for certain IntelR Core Processors and IntelR XeonR Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2019-0152 Insufficient memory protection in Syste...

K02326457: Multiple AMD processor vulnerabilities

Security Advisory Description CVE-2018-8930 The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3. CVE-2018-8931 The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips hav...

SUSE-SU-2022:1744-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

SUSE-SU-2022:1732-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. bsc1199423 Updated to Intel CPU Microcode 20220419 release. bsc1198717 - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some IntelR Processors may...

Vulnerabilities fixed in Intel processors and -chipsets

Intel has fixed vulnerabilities in several processors and chipsets. A local malicious party could potentially exploit them to cause a denial-of-service, gain gain access to system data or obtain elevated privileges. For the vulnerability with reference CVE-2021-33149 no security updates have been...

Intel Boot Guard and Intel TXT Advisory - Lenovo Support US

No description provided...

MGASA-2022-0100 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.28 and fixes at least the following security issues: Non-transparent sharing of branch predictor selectors between contexts in some IntelR Processors may allow an authorized user to potentially enable information disclosure via local access...

AMD 多款产品输入验证错误漏洞

AMD Platform Security Processor, etc. are products of AMD USA. AMD Platform Security Processor is a security processor. AMD Secure Encrypted Virtualization is an application software. Micro Devices System Management Unit AMD SMU, etc. are products of AMD Advanced Micro Devices, Inc. in the U.S...

AMD多款产品输入验证错误漏洞

AMD Platform Security Processor and AMD Secure Encrypted Virtualization are both products of AMD Corporation.AMD Platform Security Processor is a security processor.AMD Secure Encrypted Virtualization is a software application. Hardware-accelerated memory encryption to protect data in use. An inp...

Intel SGX and Processor Side Channel Data Leakage Vulnerabilities - Lenovo Support US

No description provided...

OPENSUSE-SU-2019:2504-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Updated to 20191112 security release bsc1155988 - Processor Identifier Version Products - Model Stepping F-MO-S/PI Old-New - ---- new platforms ---------------------------------------- - CML-U62 A0 6-a6-0/80 000000c6 Core Gen10 Mobile -...

SUSE-SU-2019:2959-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Updated to 20191112 security release bsc1155988 - Processor Identifier Version Products - Model Stepping F-MO-S/PI Old-New - ---- new platforms ---------------------------------------- - CML-U62 A0 6-a6-0/80 000000c6 Core Gen10 Mobile -...

Processor Speculative Execution Vulnerabilities (Linux)

The remote host has not properly mitigated a series of known speculative execution vulnerabilities. It, therefore, may be affected by : - Spectre variant 1 CVE-2017-5753 - Spectre variant 2 CVE-2017-5715 - Meltdown CVE-2017-5754 Binary data linuxkernelspeculativeexecutiondetect.nbin...

[SECURITY] [DLA 1787-1] linux-4.9 security update

Package : linux-4.9 Version : 4.9.168-1+deb9u2deb8u1 CVE ID : CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 Debian Bug : 928125 Multiple researchers have discovered vulnerabilities in the way the Intel processor designs have implemented speculative forwarding of data filled into...

The vulnerabilities of Intel, ARM, and AMD processors stem from the unique workings of the branch prediction module, which allows attackers to exploit the protected information.

The vulnerabilities of Intel, ARM, and AMD processors are related to the characteristics of the branch prediction module’s operation. Exploiting these vulnerabilities allows attackers to disclose confidential information by creating conditions for incorrect branch predictions...

The Elite Intel Team Still Fighting Meltdown and Spectre

One year after a pair of devastating processor vulnerabilities were first disclosed, Intel's still dealing with the fallout...