[ELSA-2023-5068] linux-firmware security update
Severity
Moderate
Affected Packages
26
CVEs
1
[20230516-999.27.git6c9e0ed5.el9]
- Update firmware for qat_4xxx devices (Orabug: 35811008)
[20230516-999.26.git6c9e0ed5.el9]
- Run dracut -f in %posttrans instead of %post (Orabug: 35661938)
- Drop latest AMD microcode commits to family 19 file to include Milan microcode but not Genoa (Orabug: 35708511)
[20230516-999.25.git6c9e0ed5.el9]
- Add missing amd-ucode/ files to nano and core rpm (Orabug: 35642190)
- Add posttrans scriptlet to reload microcode on AMD (Orabug: 35636951)
- Recreate initramfs for AMD systems (Orabug: 35636951)
[20230516-999.24.git6c9e0ed5.el7]
- 8a07fa49 linux-firmware: Update AMD fam19h cpu microcode (Orabug: 35659485)
[20230516-999.23.git6c9e0ed5.el9]
- Firmware files need to be uncompressed for early kernel load to work
- Resolves Zenbleed (Orabug: 35650345) {CVE-2023-20593}
- ID
- ELSA-2023-5068
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2023-5068.html
- Published
-
2023-10-24T00:00:00
(11 months ago) - Modified
-
2023-10-24T00:00:00
(11 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
-
ALAS2-2023-2190
-
ALPINE:CVE-2023-20593
-
ALSA-2023:5068
-
ALSA-2023:5069
-
ALSA-2023:5244
-
ALSA-2023:5245
-
DSA-5459-1
-
DSA-5461-1
-
DSA-5462-1
-
ELSA-2023-12654
-
ELSA-2023-12655
-
ELSA-2023-12656
-
ELSA-2023-12657
-
ELSA-2023-12689
-
ELSA-2023-12690
-
ELSA-2023-12691
-
ELSA-2023-12692
-
ELSA-2023-12836
-
ELSA-2023-12839
-
ELSA-2023-4819
-
FEDORA-2023-04473fc41e
-
FEDORA-2023-0d6aa10621
-
FEDORA-2023-7228464f28
-
RHSA-2023:4819
-
RHSA-2023:4821
-
RHSA-2023:5068
-
RHSA-2023:5069
-
RHSA-2023:5091
-
RHSA-2023:5244
-
RHSA-2023:5245
-
RHSA-2023:5255
-
RHSA-2023:7513
-
RLSA-2023:5244
-
SSA:2023-205-01
-
SSA:2023-325-01
-
SUSE-SU-2023:2986-1
-
SUSE-SU-2023:3001-1
-
SUSE-SU-2023:3006-1
-
SUSE-SU-2023:3019-1
-
SUSE-SU-2023:3020-1
-
SUSE-SU-2023:3022-1
-
SUSE-SU-2023:3171-1
-
SUSE-SU-2023:3172-1
-
SUSE-SU-2023:3180-1
-
SUSE-SU-2023:3182-1
-
SUSE-SU-2023:3206-1
-
SUSE-SU-2023:3302-1
-
SUSE-SU-2023:3309-1
-
SUSE-SU-2023:3318-1
-
SUSE-SU-2023:3324-1
-
SUSE-SU-2023:3333-1
-
SUSE-SU-2023:3349-1
-
SUSE-SU-2023:3390-1
-
SUSE-SU-2023:3391-1
-
SUSE-SU-2023:3392-1
-
SUSE-SU-2023:3395-1
-
SUSE-SU-2023:3421-1
-
SUSE-SU-2023:3446-1
-
SUSE-SU-2023:3447-1
-
SUSE-SU-2023:3494-1
-
SUSE-SU-2023:3495-1
-
SUSE-SU-2023:3496-1
-
SUSE-SU-2023:3894-1
-
SUSE-SU-2023:3895-1
-
SUSE-SU-2023:3902-1
-
SUSE-SU-2023:3903-1
-
SUSE-SU-2024:0884-1
-
SUSE-SU-2024:0885-1
-
USN-6244-1
-
USN-6315-1
-
USN-6316-1
-
USN-6317-1
-
USN-6318-1
-
USN-6321-1
-
USN-6324-1
-
USN-6325-1
-
USN-6328-1
-
USN-6329-1
-
USN-6330-1
-
USN-6331-1
-
USN-6332-1
-
USN-6342-1
-
USN-6342-2
-
USN-6346-1
-
USN-6348-1
-
USN-6357-1
-
USN-6385-1
-
USN-6397-1
-
USN-6532-1
-
XSA-433
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2023-5068 |
|
|
| CVE | CVE-2023-20593 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/netronome-firmware?distro=oraclelinux-9 | oraclelinux |
 netronome-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/liquidio-firmware?distro=oraclelinux-9 | oraclelinux |
liquidio-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/linux-firmware?distro=oraclelinux-9 | oraclelinux |
linux-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/linux-firmware-whence?distro=oraclelinux-9 | oraclelinux |
linux-firmware-whence
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/linux-firmware-core?distro=oraclelinux-9 | oraclelinux |
linux-firmware-core
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/libertas-usb8388-olpc-firmware?distro=oraclelinux-9 | oraclelinux |
libertas-usb8388-olpc-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/libertas-usb8388-firmware?distro=oraclelinux-9 | oraclelinux |
libertas-usb8388-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/libertas-sd8787-firmware?distro=oraclelinux-9 | oraclelinux |
libertas-sd8787-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/libertas-sd8686-firmware?distro=oraclelinux-9 | oraclelinux |
libertas-sd8686-firmware
|
< 20230516-999.27.git6c9e0ed5.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwlax2xx-firmware?distro=oraclelinux-9 | oraclelinux |
iwlax2xx-firmware
|
< 20230516-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl7260-firmware?distro=oraclelinux-9 | oraclelinux |
iwl7260-firmware
|
< 25.30.13.0-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl6050-firmware?distro=oraclelinux-9 | oraclelinux |
iwl6050-firmware
|
< 41.28.5.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl6000g2b-firmware?distro=oraclelinux-9 | oraclelinux |
iwl6000g2b-firmware
|
< 18.168.6.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl6000g2a-firmware?distro=oraclelinux-9 | oraclelinux |
iwl6000g2a-firmware
|
< 18.168.6.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl6000-firmware?distro=oraclelinux-9 | oraclelinux |
iwl6000-firmware
|
< 9.221.4.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl5150-firmware?distro=oraclelinux-9 | oraclelinux |
iwl5150-firmware
|
< 8.24.2.2-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl5000-firmware?distro=oraclelinux-9 | oraclelinux |
iwl5000-firmware
|
< 8.83.5.1_1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl4965-firmware?distro=oraclelinux-9 | oraclelinux |
iwl4965-firmware
|
< 228.61.2.24-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl3945-firmware?distro=oraclelinux-9 | oraclelinux |
iwl3945-firmware
|
< 15.32.2.9-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl3160-firmware?distro=oraclelinux-9 | oraclelinux |
iwl3160-firmware
|
< 25.30.13.0-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl2030-firmware?distro=oraclelinux-9 | oraclelinux |
iwl2030-firmware
|
< 18.168.6.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl2000-firmware?distro=oraclelinux-9 | oraclelinux |
iwl2000-firmware
|
< 18.168.6.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl135-firmware?distro=oraclelinux-9 | oraclelinux |
iwl135-firmware
|
< 18.168.6.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl105-firmware?distro=oraclelinux-9 | oraclelinux |
iwl105-firmware
|
< 18.168.6.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl1000-firmware?distro=oraclelinux-9 | oraclelinux |
iwl1000-firmware
|
< 39.31.5.1-999.27.el9 | oraclelinux-9 | ||
| Affected | pkg:rpm/oraclelinux/iwl100-firmware?distro=oraclelinux-9 | oraclelinux |
iwl100-firmware
|
< 39.31.5.1-999.27.el9 | oraclelinux-9 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |