[openSUSE-SU-2020:2075-1] Security update for ucode-intel
Severity
Important
Affected Packages
1
CVEs
3
Security update for ucode-intel
This update for ucode-intel fixes the following issues:
Updated Intel CPU Microcode to 20201118 official release. (bsc#1178971)
- Removed TGL/06-8c-01/80 due to functional issues with some OEM platforms.
Updated Intel CPU Microcode to 20201110 official release.
- CVE-2020-8695: Fixed Intel RAPL sidechannel attack (SGX) (bsc#1170446)
- CVE-2020-8698: Fixed Fast Store Forward Predictor INTEL-SA-00381 (bsc#1173594)
- CVE-2020-8696: Vector Register Sampling Active INTEL-SA-00381 (bsc#1173592)
Release notes:
- Security updates for INTEL-SA-00381.
- Security updates for INTEL-SA-00389.
- Update for functional issues. Refer to Second Generation Intel® Xeon® Processor Scalable Family Specification Update for details.
- Update for functional issues. Refer to Intel® Xeon® Processor Scalable Family Specification Update for details.
- Update for functional issues. Refer to Intel® Xeon® Processor E5 v3 Product Family Specification Update for details.
- Update for functional issues. Refer to 10th Gen Intel® Core™ Processor Families Specification Update for details.
- Update for functional issues. Refer to 8th and 9th Gen Intel® Core™ Processor Family Spec Update for details.
- Update for functional issues. Refer to 7th Gen and 8th Gen (U Quad-Core) Intel® Processor Families Specification Update for details.
- Update for functional issues. Refer to 6th Gen Intel® Processor Family Specification Update for details.
- Update for functional issues. Refer to Intel® Xeon® E3-1200 v6 Processor Family Specification Update for details.
- Update for functional issues. Refer to Intel® Xeon® E-2100 and E-2200 Processor Family Specification Update for details.
New Platforms
Processor Stepping F-M-S/PI Old Ver New Ver Products CPX-SP A1 06-55-0b/bf 0700001e Xeon Scalable Gen3 LKF B2/B3 06-8a-01/10 00000028 Core w/Hybrid Technology TGL B1 06-8c-01/80 00000068 Core Gen11 Mobile CML-H R1 06-a5-02/20 000000e0 Core Gen10 Mobile CML-S62 G1 06-a5-03/22 000000e0 Core Gen10 CML-S102 Q0 06-a5-05/22 000000e0 Core Gen10 CML-U62 V2 K0 06-a6-01/80 000000e0 Core Gen10 Mobile Updated Platforms
Processor Stepping F-M-S/PI Old Ver New Ver Products HSX-E/EP Cx/M1 06-3f-02/6f 00000043 00000044 Core Gen4 X series; Xeon E5 v3 SKL-U/Y D0 06-4e-03/c0 000000d6 000000e2 Core Gen6 Mobile SKL-U23e K1 06-4e-03/c0 000000d6 000000e2 Core Gen6 Mobile SKX-SP B1 06-55-03/97 01000157 01000159 Xeon Scalable SKX-SP H0/M0/U0 06-55-04/b7 02006906 02006a08 Xeon Scalable SKX-D M1 06-55-04/b7 02006906 02006a08 Xeon D-21xx CLX-SP B0 06-55-06/bf 04002f01 04003003 Xeon Scalable Gen2 CLX-SP B1 06-55-07/bf 05002f01 05003003 Xeon Scalable Gen2 APL D0 06-5c-09/03 00000038 00000040 Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx APL E0 06-5c-0a/03 00000016 0000001e Atom x5-E39xx SKL-H/S R0/N0 06-5e-03/36 000000d6 000000e2 Core Gen6; Xeon E3 v5 GKL-R R0 06-7a-08/01 00000016 00000018 Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 ICL-U/Y D1 06-7e-05/80 00000078 000000a0 Core Gen10 Mobile AML-Y22 H0 06-8e-09/10 000000d6 000000de Core Gen8 Mobile KBL-U/Y H0 06-8e-09/c0 000000d6 000000de Core Gen7 Mobile CFL-U43e D0 06-8e-0a/c0 000000d6 000000e0 Core Gen8 Mobile WHL-U W0 06-8e-0b/d0 000000d6 000000de Core Gen8 Mobile AML-Y42 V0 06-8e-0c/94 000000d6 000000de Core Gen10 Mobile CML-Y42 V0 06-8e-0c/94 000000d6 000000de Core Gen10 Mobile WHL-U V0 06-8e-0c/94 000000d6 000000de Core Gen8 Mobile KBL-G/H/S/E3 B0 06-9e-09/2a 000000d6 000000de Core Gen7; Xeon E3 v6 CFL-H/S/E3 U0 06-9e-0a/22 000000d6 000000de Core Gen8 Desktop, Mobile, Xeon E CFL-S B0 06-9e-0b/02 000000d6 000000de Core Gen8 CFL-H/S P0 06-9e-0c/22 000000d6 000000de Core Gen9 CFL-H R0 06-9e-0d/22 000000d6 000000de Core Gen9 Mobile CML-U62 A0 06-a6-00/80 000000ca 000000e0 Core Gen10 Mobile
This update was imported from the SUSE:SLE-15:Update update project.
Package | Affected Version |
---|---|
pkg:rpm/opensuse/ucode-intel?arch=x86_64&distro=opensuse-leap-15.2 | < 20201118-lp152.2.8.1 |
- ID
- openSUSE-SU-2020:2075-1
- Severity
- important
- URL
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JAVL7PXBHMY5MEXAKSQM6PTNW6CHJJC2/
- Published
-
2020-11-27T07:42:26
(3 years ago) - Modified
-
2020-11-27T07:42:26
(3 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2021-1663
- ALBA-2021:0621
- ALPINE:CVE-2020-8698
- ALSA-2021:3027
- ASA-202102-34
- ELSA-2020-5083
- ELSA-2020-5084
- ELSA-2020-5085
- ELSA-2020-5913
- ELSA-2020-5914
- ELSA-2020-5917
- ELSA-2020-5923
- ELSA-2020-5924
- ELSA-2020-5926
- ELSA-2020-5995
- ELSA-2020-5996
- ELSA-2021-3027
- ELSA-2021-3028
- FEDORA-2020-14fda1bf85
- FEDORA-2020-1afbe7ba2d
- FEDORA-2020-2c8824c6b1
- FEDORA-2020-d5941ea479
- openSUSE-SU-2020:2098-1
- RHBA-2021:0621
- RHBA-2021:0623
- RHSA-2020:5083
- RHSA-2020:5084
- RHSA-2020:5085
- RHSA-2021:3027
- RHSA-2021:3028
- SUSE-SU-2020:3271-1
- SUSE-SU-2020:3274-1
- SUSE-SU-2020:3275-1
- SUSE-SU-2020:3276-1
- SUSE-SU-2020:3279-1
- SUSE-SU-2020:3372-1
- SUSE-SU-2020:3373-1
- SUSE-SU-2020:3374-1
- SUSE-SU-2020:3457-1
- SUSE-SU-2020:3514-1
- SUSE-SU-2020:3713-1
- SUSE-SU-2023:4625-1
- SUSE-SU-2023:4936-1
- USN-4628-1
- USN-4628-3
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_2075-1.json | |
Suse | URL for openSUSE-SU-2020:2075-1 | https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JAVL7PXBHMY5MEXAKSQM6PTNW6CHJJC2/ | |
Suse | E-Mail link for openSUSE-SU-2020:2075-1 | https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JAVL7PXBHMY5MEXAKSQM6PTNW6CHJJC2/ | |
Bugzilla | SUSE Bug 1170446 | https://bugzilla.suse.com/1170446 | |
Bugzilla | SUSE Bug 1173592 | https://bugzilla.suse.com/1173592 | |
Bugzilla | SUSE Bug 1173594 | https://bugzilla.suse.com/1173594 | |
Bugzilla | SUSE Bug 1178971 | https://bugzilla.suse.com/1178971 | |
CVE | SUSE CVE CVE-2020-8695 page | https://www.suse.com/security/cve/CVE-2020-8695/ | |
CVE | SUSE CVE CVE-2020-8696 page | https://www.suse.com/security/cve/CVE-2020-8696/ | |
CVE | SUSE CVE CVE-2020-8698 page | https://www.suse.com/security/cve/CVE-2020-8698/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/opensuse/ucode-intel?arch=x86_64&distro=opensuse-leap-15.2 | opensuse | ucode-intel | < 20201118-lp152.2.8.1 | opensuse-leap-15.2 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |