1. Home
  2. Security Advisories
  3. OpenSUSE
  4. openSUSE-SU-2020:2075-1

[openSUSE-SU-2020:2075-1] Security update for ucode-intel

Severity Important
Affected Packages 1
CVEs 3
Info Packages References Vulnerabilities

Security update for ucode-intel

This update for ucode-intel fixes the following issues:

  • Updated Intel CPU Microcode to 20201118 official release. (bsc#1178971)

    • Removed TGL/06-8c-01/80 due to functional issues with some OEM platforms.

  • Updated Intel CPU Microcode to 20201110 official release.

    • CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446)
    • CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594)
    • CVE-2020-8696: Vector Register Sampling Active INTEL-SA-00381 (bsc#1173592)

  • Release notes:

    New Platforms

    Processor Stepping F-M-S/PI Old Ver New Ver Products
    CPX-SP A1 06-55-0b/bf 0700001e Xeon Scalable Gen3
    LKF B2/B3 06-8a-01/10 00000028 Core w/Hybrid Technology
    TGL B1 06-8c-01/80 00000068 Core Gen11 Mobile
    CML-H R1 06-a5-02/20 000000e0 Core Gen10 Mobile
    CML-S62 G1 06-a5-03/22 000000e0 Core Gen10
    CML-S102 Q0 06-a5-05/22 000000e0 Core Gen10
    CML-U62 V2 K0 06-a6-01/80 000000e0 Core Gen10 Mobile

    Updated Platforms

    Processor Stepping F-M-S/PI Old Ver New Ver Products
    HSX-E/EP Cx/M1 06-3f-02/6f 00000043 00000044 Core Gen4 X series; Xeon E5 v3
    SKL-U/Y D0 06-4e-03/c0 000000d6 000000e2 Core Gen6 Mobile
    SKL-U23e K1 06-4e-03/c0 000000d6 000000e2 Core Gen6 Mobile
    SKX-SP B1 06-55-03/97 01000157 01000159 Xeon Scalable
    SKX-SP H0/M0/U0 06-55-04/b7 02006906 02006a08 Xeon Scalable
    SKX-D M1 06-55-04/b7 02006906 02006a08 Xeon D-21xx
    CLX-SP B0 06-55-06/bf 04002f01 04003003 Xeon Scalable Gen2
    CLX-SP B1 06-55-07/bf 05002f01 05003003 Xeon Scalable Gen2
    APL D0 06-5c-09/03 00000038 00000040 Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx
    APL E0 06-5c-0a/03 00000016 0000001e Atom x5-E39xx
    SKL-H/S R0/N0 06-5e-03/36 000000d6 000000e2 Core Gen6; Xeon E3 v5
    GKL-R R0 06-7a-08/01 00000016 00000018 Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120
    ICL-U/Y D1 06-7e-05/80 00000078 000000a0 Core Gen10 Mobile
    AML-Y22 H0 06-8e-09/10 000000d6 000000de Core Gen8 Mobile
    KBL-U/Y H0 06-8e-09/c0 000000d6 000000de Core Gen7 Mobile
    CFL-U43e D0 06-8e-0a/c0 000000d6 000000e0 Core Gen8 Mobile
    WHL-U W0 06-8e-0b/d0 000000d6 000000de Core Gen8 Mobile
    AML-Y42 V0 06-8e-0c/94 000000d6 000000de Core Gen10 Mobile
    CML-Y42 V0 06-8e-0c/94 000000d6 000000de Core Gen10 Mobile
    WHL-U V0 06-8e-0c/94 000000d6 000000de Core Gen8 Mobile
    KBL-G/H/S/E3 B0 06-9e-09/2a 000000d6 000000de Core Gen7; Xeon E3 v6
    CFL-H/S/E3 U0 06-9e-0a/22 000000d6 000000de Core Gen8 Desktop, Mobile, Xeon E
    CFL-S B0 06-9e-0b/02 000000d6 000000de Core Gen8
    CFL-H/S P0 06-9e-0c/22 000000d6 000000de Core Gen9
    CFL-H R0 06-9e-0d/22 000000d6 000000de Core Gen9 Mobile
    CML-U62 A0 06-a6-00/80 000000ca 000000e0 Core Gen10 Mobile

This update was imported from the SUSE:SLE-15:Update update project.

Package Affected Version
pkg:rpm/opensuse/ucode-intel?arch=x86_64&distro=opensuse-leap-15.2 < 20201118-lp152.2.8.1
ID
openSUSE-SU-2020:2075-1
Severity
important
URL
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JAVL7PXBHMY5MEXAKSQM6PTNW6CHJJC2/
Published
2020-11-27T07:42:26
(3 years ago)
Modified
2020-11-27T07:42:26
(3 years ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/opensuse/ucode-intel?arch=x86_64&distro=opensuse-leap-15.2 opensuse ucode-intel < 20201118-lp152.2.8.1 opensuse-leap-15.2 x86_64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date