microcode_ctl-1.17-33.32.0.4.AXS4

エラータID: AXSA:2021-2349:12

Release date: 
Thursday, August 12, 2021 - 07:52
Subject: 
microcode_ctl-1.17-33.32.0.4.AXS4
Affected Channels: 
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity: 
High
Description: 

The microcode_ctl packages provide microcode updates for Intel.

Security Fix(es):

* hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543)
* hw: Vector Register Data Sampling (CVE-2020-0548)
* hw: L1D Cache Eviction Sampling (CVE-2020-0549)
* hw: vt-d related privilege escalation (CVE-2020-24489)
* hw: improper isolation of shared resources in some Intel Processors

CVE-2020-0543
Incomplete cleanup from specific special register read operations in some
Intel(R) Processors may allow an authenticated user to potentially enable
information disclosure via local access.
CVE-2020-0548
Cleanup errors in some Intel(R) Processors may allow an authenticated user to
potentially enable information disclosure via local access.
CVE-2020-0549
Cleanup errors in some data cache evictions for some Intel(R) Processors may
allow an authenticated user to potentially enable information disclosure via
local access.
CVE-2020-24489
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated
user to potentially enable escalation of privilege via local access.
CVE-2020-24511
Improper isolation of shared resources in some Intel(R) Processors may allow an
authenticated user to potentially enable information disclosure via local
access.
CVE-2020-24512
Observable timing discrepancy in some Intel(R) Processors may allow an
authenticated user to potentially enable information disclosure via local
access.
CVE-2020-8695
Observable discrepancy in the RAPL interface for some Intel(R) Processors may
allow a privileged user to potentially enable information disclosure via local
access.
CVE-2020-8696
Improper removal of sensitive information before storage or transfer in some
Intel(R) Processors may allow an authenticated user to potentially enable
information disclosure via local access.
CVE-2020-8698
Improper isolation of shared resources in some Intel(R) Processors may allow an
authenticated user to potentially enable information disclosure via local
access.

Additional info:

Solution: 

Update packages.

CVEs: 
CVE-2020-0543
Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-0548
Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-0549
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-24489
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2020-24511
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-24512
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-8695
Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
CVE-2020-8696
Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-8698
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Additional Info: 

N/A

Download: 

SRPMS
  1. microcode_ctl-1.17-33.32.0.4.AXS4.src.rpm
    MD5: 391088ee59659e9d1892e258964ec933
    SHA-256: 840bc20bb6066f02cc721491ec43ad2b5c46e6fbfccbf249741b88e5114604ed
    Size: 5.22 MB

Asianux Server 4 for x86
  1. microcode_ctl-1.17-33.32.0.4.AXS4.i686.rpm
    MD5: a105128b2a39eb78d02ce6eb50717755
    SHA-256: 47d8b21bfc3011a9e3557d3a8b325b234d164ff1acd7b08f0579ac6073c34e9e
    Size: 5.87 MB

Asianux Server 4 for x86_64
  1. microcode_ctl-1.17-33.32.0.4.AXS4.x86_64.rpm
    MD5: ba81c228eb8a40268d501ef02c6e9fe4
    SHA-256: 6b925a431093615a15f7f706c0abf7cac06f166a1b7cdd7aefebc07e5f59579a
    Size: 5.87 MB